SC Information Sharing and Analysis Center
The South Carolina Information Sharing and Analysis Center (SC-ISAC) was created in October 2003 in response to the lack of sufficient staff resources and security practices in place in South Carolina to defend against and minimize damage due to hostile attacks by viruses, worms and politically motivated or terrorist attacks.
SC-ISAC is a unique partnership designed to enhance coordination of investigation and intelligence information to detect, preempt and prevent future cyber terrorist acts by combining resources, to include personnel, equipment and information from the Division of State Information Technology (DSIT), the South Carolina Law Enforcement Division (SLED), the United States Secret Services (USSS), the Multi-State ISAC, the US CERT and the Department of Homeland Security.
The purpose of SC-ISAC is, first, to assist members of the South Carolina government community in implementing proactive measures to reduce the risks of computer security incidents and, second, to assist that community in responding to such incidents when they occur. The specific operations of the program include:
- Analyzing and distributing information on security events, best practices and awareness programs to federal, State, county and local levels.
- Creating the State Computer Security Incident Response Team (SC CSIRT), a trained resource (50 volunteers) that can be utilized by the State to minimize the impact and thereby the costs associated with a security event.
- Establishing a 24 x 7 Security Operations Center (SOC) which monitors and activates the CSIRT in the event of a security event. The centerpiece of the SOC is a Security Information Management System which provides a central location for events to be recorded and monitored. South Carolina is the first with such a comprehensive view of the security posture of its network.