Definition
The Commercial Facilities Sector (CFS), one of the 16 critical infrastructure sectors, focuses on predominantly privately owned “sites that draw large crowds of people for shopping, business, entertainment, or lodging,” including motion studios, malls, sports arenas, mixed-use facilities, and hotels (CISA CFS Website 2019 para 1).
Introduction
In 2013 the administration of the United States (US; Obama 2013) released Executive Order (EO) 13636, entitled Improving Critical Infrastructure Cybersecurity (Department of Homeland Security 2013a). This EO directed (in part) the executive branch of government to strengthen cybersecurity practices and share cyber threat information (DHS 2013a). Additionally, in the same year, the President Obama Administration released the US Presidential Policy Directive 21 (PPD-21). An essential action from the PPD was to require “The U. S. Department of Homeland Security (DHS) to revise the then 2009 National Infrastructure Protection Plan (NIPP)...
This is a preview of subscription content, log in via an institution to check access.
References
Bush, G., & Office of the Press Secretary. (2003). Homeland Security Presidential Directive/HSPD-8 National Preparedness. Washington, DC: Executive Office of the President of the United States. Retrieved from https://fas.org/irp/offdocs/nspd/hspd-8.html.
Critical Infrastructure Resource Center (CIRC). (n.d.). Understanding the commercial facilities sector. Washington, DC: U. S Department of Homeland Security. Retrieved on June 18, 2019 http://www.humtech.com/fema/CI_RC/comFac1.htm
Cybersecurity and Infrastructure Security Agency (CISA). (2014a). Critical infrastructure cyber community C3 voluntary program. Washington, DC: Department of Homeland Security. Retrieved from https://www.dhs.gov/ccubedvp.
Cybersecurity and Infrastructure Security Agency (CISA). (2014b). Stakeholder engagement and critical infrastructure resilience cyber resilience review, (CRR). Washington, DC: U.S. Department of Homeland Security. Retrieved from http://www.us-cert.gov/sites/default/files/c3vp/crr-fact-sheet.pdf.
Cybersecurity and Infrastructure Security Agency (CISA). (2015a). Commercial facilities sector. Washington, DC: Department of Homeland Security. Retrieved from https://www.dhs.gov/cisa/commercial-facilities-sector
Cybersecurity and Infrastructure Security Agency (CISA). (2015b). Commercial facilities sector-specific plan: An annex to the NIPP 2013. Washington, DC: Department of Homeland Security. Retrieved from https://www.dhs.gov/sites/default/files/publications/nipp-ssp-commercial-facilities-2015-508.pdf.
Cybersecurity and Infrastructure Security Agency (CISA). Protective security advisors program. Retrieved on May 6, 2019, from https://www.dhs.gov/cisa/protective-security-advisors
Department of Homeland Security. (2009). National Infrastructure Protection Plan (NIPP) partnering to enhance protection and resiliency. Washington, DC: U. S Department of Homeland Security. Retrieved from https://www.dhs.gov/xlibrary/assets/NIPP_Plan.pdf.
Department of Homeland Security. (2013a). Executive order 13636: Improving critical infrastructure cybersecurity. Federal Register, 78(33), 11739. Executive Office of the President of the United States, Washington, DC. Retrieved from http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.662.4938&rep=rep1&type=pdf.
Department of Homeland Security. (2013b). Executive Order 13636: Incentives study analytic report. Washington, DC. Retrieved from https://www.dhs.gov/sites/default/files/publications/dhs-eo13636-analytic-report-cybersecurity-incentives-study.pdf
Department of Homeland Security. (2013c). National Infrastructure Protection Plan: Partnering for critical infrastructure protection and resilience. Washington, DC. Retrieved from https://www.dhs.gov/sites/default/files/publications/national-infrastructure-protection-plan-2013-508.pdf
Department of Homeland Security. (2019). Commercial facilities sector. Accessed at: https://www.dhs.gov/cisa/commercial-facilities-sector (6.11.2019).
Department of Homeland Security, Science and Technology Directorate. (2016). Research and development partnerships – SAFETY act for liability protection fact sheet. Washington, DC: U. S Department of Homeland Security. Retrieved from https://www.dhs.gov/sites/default/files/publications/Safety%20Act%20for%20Liability%20Protection_0.pdf.
Kristen, D. (2017). Rochford-Security–update. Gaithersburg: National Institute of Standards and Technology. Retrieved from https://www.nist.gov/sites/default/files/documents/2017/06/12/2._rochford_-_security_update.pdf.
Moteff, J. (2012). Critical infrastructures: Background, policy, and implementation, issues for Congress (CRS R42683). Washington, DC: Congressional Research Service. Retrieved from https://fas.org/sgp/crs/homesec/R42683.pdf
Moteff, J. (2015). Critical infrastructures: Background, policy, and implementation (CRS RL30153). Washington, DC: Congressional Research Service. Retrieved from https://fas.org/sgp/crs/homesec/RL30153.pdf
National Cybersecurity Center of Excellence (NCCoE). (2012). NCCoE-Brochure. Gaithersburg: National Institute of Standards and Technology. Retrieved from https://www.nccoe.nist.gov/sites/default/files/library/nccoe-brochure.pdf
National Infrastructure Protection Plan. (2013). Partnering for critical infrastructure protection and resilience. Washington, DC: Department of Homeland Security. Retrieved from https://www.dhs.gov/sites/default/files/publications/national-infrastructure-protection-plan-2013-508.pdf
National Institute of Standards and Technology. (2014). Framework for improving critical infrastructure cybersecurity, (FICI), Version 1.0. Washington DC, US Department of Commerce. Retrieved from https://www.nist.gov/system/files/documents/cyberframework/cybersecurity-framework-021214.pdf
National Institute of Standards and Technology. (2018). Framework for improving critical infrastructure cybersecurity version 1.1. Washington, DC: U.S. Department of Commerce. Retrieved from https://nvlpubs.nist.gov/nistpubs/ir/2016/NIST.IR.7621r1.pdf
National Protection and Programs Directorate. (2014). Press release DHS launches the C3 voluntary program, a public-private partnership to strengthen critical infrastructure cybersecurity. Washington, DC: U.S. Department of Homeland Security. Retrieved from https://www.dhs.gov/blog/2014/02/12/dhs-launches-c%C2%B3-voluntary-program.
National Protection and Programs Directorate’s Office of Infrastructure Protection. (2014). Fact sheet: Protective Security Advisor Program. Washington, DC: U.S. Department of Homeland Security. Retrieved from https://www.dhs.gov/sites/default/files/publications/PSA-Program-Fact-Sheet-05-15-508.pdf.
Obama, B. (2013). Presidential Policy Directive-21: Critical infrastructure protection and resilience. Washington, DC: The White House. Retrieved from https://obamawhitehouse.archives.gov/the-press-office/2013/02/12/presidential-policy-directive-critical-infrastructure-security-and-resil.
Office of Cybersecurity & communications (2014). Cyber resilience review fact sheet. Washington, DC: U.S. Department of Homeland Security. Retrieved from https://www.dhs.gov/sites/default/files/publications/Cyber-Resilience-Review-Fact-Sheet-508.pdf
Office of Infrastructure Protection. (2006). National Infrastructure Protection Plan. Washington, DC: U.S. Department of Homeland Security. Retrieved from https://www.dhs.gov/xlibrary/assets/NIPP_Plan_noApps.pdf
Office of Infrastructure Protection (IP) (2014). Cyber Community Voluntary Program C3 (C3VP) Web Site. Washington, DC: U.S. Department of Homeland Security. Retrieved from https://www.dhs.gov/ccubedvp
Office of Protective Operations. (2017). Annual report CMR-2017_Annual_Report_online, U. S. Secret Service, Washington, DC. Retrieved from https://www.secretservice.gov/data/press/reports/CMR-2017_Annual_Report_online.pdf
Office of the Private Sector. (2018). Office of the private sector (OPS) fact sheet. Washington, DC: Federal Bureau of Investigation. Retrieved from https://www.fbi.gov/file-repository/ops-factsheet-8-3-18.pdf/view.
Paulsen, C., & Toth, P. (2016). Small business information security: The fundamentals (NISTIR 7621 R-1). Gaithersburg: National Institute of Standards and Technology. Retrieved from https://nvlpubs.nist.gov/nistpubs/ir/2016/NIST.IR.7621r1.pdf
Science and Technology Directorate. (2016). Research and development partnerships – SAFETY Act for liability protection. Washington, DC: U. S. Department of Homeland Security. Retrieved from https://www.dhs.gov/sites/default/files/publications/Safety%20Act%20for%20Liability%20Protection_0.pdf.
Science and Technology Directorate. (2017). Project responder five final reports. Washington, DC: U.S. Department of Homeland Security. Retrieved from https://www.dhs.gov/sites/default/files/publications/Project-Responder-5-Report_170814-508.pdf.
Further Readings
Cybersecurity and Infrastructure Security Agency (CISA). (2019). National critical functions an evolved lens for critical infrastructure security and resilience. Washington, DC: U. S. Department of Homeland Security. Retrieved from https://www.dhs.gov/sites/default/files/publications/national-critical-functions-overview-508.pdf.
Cybersecurity and Infrastructure Security Agency (CISA). (2019). National critical functions set. Washington, DC: U. S. Department of Homeland Security. Retrieved from https://www.dhs.gov/sites/default/files/publications/national-critical-functions-set-508.pdf.
Cybersecurity and Infrastructure Security Agency (CISA). (2019). National critical functions reducing national risk. Washington, DC: U. S. Department of Homeland Security. Retrieved from https://www.dhs.gov/sites/default/files/publications/19_0430_cisa_nrmc-reducing-national-risk.pdf.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2019 Springer Nature Switzerland AG
About this entry
Cite this entry
Martin, R. (2019). Critical Infrastructure: Commercial Facilities Sector. In: Shapiro, L., Maras, MH. (eds) Encyclopedia of Security and Emergency Management. Springer, Cham. https://doi.org/10.1007/978-3-319-69891-5_119-1
Download citation
DOI: https://doi.org/10.1007/978-3-319-69891-5_119-1
Received:
Accepted:
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-69891-5
Online ISBN: 978-3-319-69891-5
eBook Packages: Springer Reference Law and CriminologyReference Module Humanities and Social SciencesReference Module Business, Economics and Social Sciences