The Joint Security Operations Center will bring federal, state, county and local cybersecurity data sharing efforts under one umbrella to improve incident response and provide a holistic view of the cyber-threat landscape.
To improve coordination and bolster cybersecurity efforts related to data collection and information sharing, New York has launched the Joint Security Operations Center (JSOC) to bring together federal, state, county, local governments and critical infrastructure partners.
JSOC will provide leaders from across the state a comprehensive overview of the cyber-threat landscape and improve coordination regarding threat intelligence and incident response, Gov. Kathy Hochul announced during a Feb. 22 press conference.
"There is a new type of emerging risk that threatens our daily lives, and just as we improved our physical security infrastructure in the aftermath of 9/11, we must now transform how we approach cybersecurity with that same rigor and seriousness," Hochul said.
JSOC will become a first-of-its-kind data sharing hub designed to improve New York’s cybersecurity posture, officials said. The center will be headquartered in Brooklyn and offer cybersecurity teams a centralized view of threat data from federal, state, city and county governments, critical businesses and utilities. State partners include the Division of Homeland Security and Emergency Services, the Office of Information Technology Services, the New York State Police, the Metropolitan Transportation Authority, the Port Authority of New York and New Jersey, the New York Power Authority and others. With a common portal for all threat information, collaboration will be streamlined and response times are expected to go down.
This project is part of Hochul’s budget for the 2023 fiscal year, which allocates a historic $61.9 million toward cybersecurity. It will expand New York’s cyber red team program that will broaden the phishing defenses, increase vulnerability scanning, expand penetration testing and deliver other cyber incident response services. These investments will ensure that the state can isolate and protect parts of its system if one part of the network is attacked, officials said.
In her budget proposal, Hochul also included a $30 million shared services program to give local government and regional partners that do not have the funding to fend off cyberattacks the opportunity to deploy high-quality defenses.
Historically, state agencies have conducted independent cybersecurity efforts. However, acting alone is no longer considered the optimal approach, as the increased frequency and sophistication of attacks have prompted entities to rely on each other for support. New York in particular is a prime target for cybersecurity attacks, as the state’s prominent role finance, energy, transportation and health care make it an attractive target for cyber criminals looking to disrupt operations. JSOC is expected to become operational in the coming months.
“Cybersecurity has been a priority for my administration since Day 1, and this command center will strengthen our ability to protect New York's institutions, infrastructure, our citizens and public safety," Hochul said.