[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

UNIRAS Brief - Final UNIRAS Briefing - Communication to UNIRAS email subscribers

Hash: SHA1


Communication to UNIRAS email subscribers

We are writing to let you know of some changes in the way that protective 
security advice generally, and EA advice and alerting in particular will be 
provided in future.

On 1 February 2007 the National Security Advice Centre (NSAC) and the National 
Infrastructure Security Co-ordination Centre (NISCC) will merge to form the 
Centre for the Protection of National Infrastructure (CPNI). As you are 
aware, UNIRAS, which has hitherto provided alerts and briefings to the 
community, is currently part of NISCC.  With the change to NISCC comes some 
changes to UNIRAS and its advisory functions.

CPNI's role

CPNI will be the recognized Government authority for protective security 
advice across the national infrastructure.  Its role will be to protect 
national security through helping to minimize risk to the national 
infrastructure.  It will provide protective security advice which aims to 
reduce the vulnerability of the national infrastructure to terrorism and 
other threats. That protective security advice will cover the whole range 
of threats to the national infrastructure, not just the threats from 
electronic attack.  The aim is that CPNI will deliver integrated advice
across physical, information and personnel security disciplines.  This 
approach will be developed over time as new processes are developed, and 
will reflect the changes in the way that many businesses and organizations 
are now managing their security functions.

CPNI advice

CPNI advice will be targeted primarily at the organizations, businesses 
and assets comprising the national infrastructure, particularly the 
critical national infrastructure (CNI) - those key elements which are 
crucial to the continued delivery of essential services.  If you, as 
an organization, are currently receiving advice from either NSAC or NISCC, 
it is likely that you will continue to receive it from CPNI.

The future of UNIRAS

With the formation of CPNI, CESG will take on a more direct and overt role 
in the support of information assurance within Government.  CPNI will 
concentrate on providing advice and support to the private sector, though 
it will continue to draw on CESG expertise as required.  This means that 
the role of UNIRAS will change and the name UNIRAS will cease to exist 
with the formation of CPNI.  The Government CERT role will be taken by 
CESG.  CPNI will assume those CERT functions necessary to provide advice 
to its customer base.  CPNI will retain the UNIRAS email address for 
inbound mail only whilst the new structures bed down.

The new CPNI infosec help desk will act as the focus for incident reporting 
and advice in much the same way as did UNIRAS.  The help desk will operate 
a 24/7 service with the following arrangements:

Office hours

Mon-Fri: 09.00 - 16.30
Tel: +44 870 487 0748
Fax: +44 870 487 0749

On-call duty officers outside these hours:
Tel: +44 870 487 0748

Email: infosec@xxxxxxxxxxx (though the legacy uniras email address will 
still function)

Following contact with the CPNI help desk, any incidents or requests for 
assistance from Government Departments or Agencies will be handled 
entirely by CESG, similar requests from non-Government national infrastructure 
organizations will be managed by CPNI.

CPNI and CESG will work closely together but will develop and maintain their 
own relationships with the international CERT community.

CESG, as the focus for IA in Government, will provide a helpdesk support 
function for Government Departments.  The helpdesk will operate 24/7 with 
the following arrangements:

Office hours:

Mon-Fri: 09.00 - 16.30
Tel: +44 01242 709311
Fax: +44 01242 709113

Outside office hours:

Tel: +44 01242 709311

Email: incidents@xxxxxxxxxxxxxxxx and govcertuk@xxxxxxxxxxxxxxx

Impact on this list

CPNI will launch with a new website.  We intend that this website will be the 
main source of CPNI  advisories.  But we recognize that many of our customers 
will wish to continue to receive those advisories by emails so we will continue 
to provide this functionality.  If you wish to continue to receive CPNI advisories 
then at this stage you need do nothing.  We will migrate this list to the new 
CPNI web distribution mechanism.  CESG will provide its own alerting and advisory 
capability to the Government sector and government members of this list will be 
encouraged to subscribe to that system independently of any CPNI distribution system.  
CESG will be providing Government specific advice and guidance so if you are a 
government subscriber it will be distinctly advantageous to you to subscribe to 
the CESG advisory distribution system.  Further details will be provided later.

January 2007

- - - ----------------------------------------------------
Centre for the Protection of National Infrastructure

Tele: +44 870 487 0748
Fax:  +44 870 487 0749


This information is supplied in confidence by the CPNI and may not be disclosed 
other than to the agreed readership, without prior reference to the CPNI. Within 
the UK, this material may be exempt from disclosure under the relevant Freedom of 
Information Acts.
This material may be subject to exemption under the Environmental Information 
Regulations. It may also be subject to exemption as set out in Section 28 of the 
Data Protection Act.
Version: PGP 8.1


This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email 

This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email