PPD-21 states, “An effective national effort to strengthen critical infrastructure security and resilience must be guided by a national plan that identifies roles and responsibilities and is informed by the expertise, experience, capabilities and responsibilities of the SSAs, other Federal departments and agencies with critical infrastructure roles, SLTT entities and critical infrastructure owners and operators.”

PPD-41 also recognizes the shared responsibility for cybersecurity, response activities have been outlined under PPD-41 into three concurrent lines of effort: threat response, asset response, intelligence support and related activities. These concurrent lines of effort provide a foundation for harmonizing various response efforts and fostering coordination and unity of effort before, during, and after any cyber incident response.

NIPP 2013 Appendix B includes the roles, responsibilities and capabilities of critical infrastructure partners and stakeholders including those Federal Roles as prescribed in PPD-21 as well as those for State, Local, Tribal and Territorial governments as well as critical infrastructure owners and operators, advisory councils and committees and academic and research organizations.

This section of the lesson provides an overview of partner and stakeholder roles.