Critical Infrastructure Protection (CIP) Forensics

Homeland Security Presidential Directive HSPD-7 defined infrastructure as the physical systems as those that are ‘so vital to the United States that the incapacity or destruction of such systems and assets would have a debilitating impact on security, national economic security, national public health, or safety.”

Q+E provides forensic engineering and scientific analyses in the areas of critical infrastructure protection and civilian technologies.  CIP includes the following areas:

+  Banking and finance.
+  Transportation.
+  Power.
+  Information technology and communications.
+  Federal and municipal services.
+ Emergency services.
+  Fire Departments.
+ Law Enforcement Agencies.
+ Public works.

Under the DHS certification, Q+E is authorized to conduct the following independent and objective homeland security Critical Infrastructure Protection (CIP) assessments:

Analytical.  Q+E engineers and scientists conduct analytical analysis following Q+E protocols evaluating IT and cyber security systems against IEEE, PMI, ISO, NIST, and AEC standards.
Assurance.  Q+E can offer the client three levels of assurance:

o Compliance.  Q+E conducts a compliance audit using COBIT, NIST, or ISO standards.
o Assurance with opinion.  Q+E issues an opinion based on the results of a governance, risk, and compliance audit.
o Assurance with DHS Safety Act coverage.  Q+E conducts an audit and provides the requisite level of due diligence and due care for the auditee to be covered by the Safety Act against domestic and state-sponsored terrorism.

Forensics.  Q+E provides all of the above levels of assurance as well as supplies a letter to DHS averring compliance that above criteria have been met. Critical infrastructure consists of systems and networks that if interrupted, destroyed, or disrupted will have dire consequences.

Greg Hutchins PE
503.233.1012 or 800.COMPETE