e-Ponte Foundation collaboratively develops, implements, launches, and supports Nationwide Public Safety Social Enterprises that empower decentralized and autonomous local agencies and, especially, locally accountable policing, including those discussed below.
The Nationwide Interoperable CERRA Program (“Nationwide CERRA Program”) is a self-sustaining initiative launched by a partnership formed in 2009 between the National Sheriffs’ Association, FBI InfraGard and e-Ponte Foundation. The Nationwide CERRA Program works with local and regional jurisdictions nationwide to implement self-sustaining local or regional disaster response and recovery access programs to assure nationwide access to emergency zones by first responders and emergency response and recovery personnel.
The Nationwide CERRA Program implements local and regional programs that conform with “best practices” and implementation guidance published in the CERRA Framework (“Local CERRA Programs”). The CERRA Framework was jointly developed and issued by the Emergency Services Sector Coordinating Council and the U.S. Department of Homeland Security and published by DHS CISA.
e-Ponte Foundation recognizes each Local CERRA Program’s conformance with the CERRA Framework by licensing the Local CERRA Program’s use of CERRA Program Intellectual Property owned by e-Ponte Foundation, without charge.
The National Cybercrime Investigators Program(NCIP) is an initiative launched and supported by the National Sheriffs’ Association in collaboration with e-Ponte Foundation and a broad set of law enforcement investigators and prosecutors, cyber SMEs, technology firms and entrepreneurs to create a path forward for Sheriffs’ Offices, Municipal Police Departments and their State law enforcement, Federal and critical infrastructure partners to collaborate on the investigation and prosecution of cybercrimes.
NCIP provides a pre-packaged set of services for Sheriffs, Police Chiefs, Prosecutors, and the crime labs and critical infrastructure cyber incident investigation firms with which they choose to partner, aimed at enabling them to readily step up the cyber incident investigation services they provide for constituents. NCIP’s information sharing & collaboration services are driven by technical cybersecurity, data classification and data permissions measures, agency and firm vetting, and Non-Disclosure Agreements (NDAs) between information sharing and collaborating agencies and partners.
NCIP assists local agencies by providing a set of nationally-standard services and solutions in four key areas:
1. Cybercrime Victim Support, through NCIP's partnership with the Cybercrime Support Network;
2. Training, especially low-cost or free training, for law enforcement personnel, namely
3. Sustainable subscription-based Information Sharing and Collaboration Services by which an investigator or prosecutor at even the smallest and most remote local law enforcement agency can reach out to other cyber investigators and volunteer experts around the Nation for
4. Law Enforcement Investigation Programs, namely:
Both are aimed at empowering and supporting local law enforcement agencies and their partners in investigating and prosecuting cybercrimes by providing investigative tools and services—some of which can be provided at no charge to law enforcement. The CEIP and CNIP programs are driven by “lessons learned” by NYPD in the NYPD Cyber Investigative Standards Pilot Program led by Nick Selby, former NYPD Director of Cyber Intelligence and Investigations.
For a more complete discussion, see Blog Article entitled "NCIP Launches Law Enforcement Investigative Programs".
NCIP believes that enabling local law enforcement info sharing and collaboration on cyber incident investigations, nationwide, will be an unprecedented accomplishment that can be a real game-changer for law enforcement.
NCIP evangelizes local law enforcement awareness and adoption of the cybersecurity incident response processes defined in the NIST Computer Security Incident Handling Guide: Recommendations of the National Institute of Standards and Technology,Special Publication 800-61 (Revision 2) (August 2012), the industry standard for the cybersecurity industry globally. NCIP is specially focused on increasing adherence with the law enforcement “Incident Notification” processes recommended by NIST, a requirement of Federal and
some State laws, and on increasing the number and percentage of the Cybersecurity Workforce engaged in “Investigate” Specialty Area functions, as defined by the DHS CISA-published Workforce Framework for Cybersecurity (“NICE Framework”).
To assist NCIP in achieving this latter goal, e-Ponte Foundation pursues strategies to recruit, train and certify non-traditional cybersecurity workforce candidates, including recruiting Local Law Enforcement personnel, Minority Business Enterprises and Women Owned Small Businesses to be trained and certified in cybersecurity incident response, and to develop regional clusters of agencies and firms engaged in cybersecurity incident response.