Election Security Spotlight - EI-ISAC: Who We Are, What We Do
Who We Are
The Elections Infrastructure Information Sharing & Analysis Center® (EI-ISAC®) is a dedicated team of individuals working to improve the security and ensure the integrity of elections among U.S. State, Local, Tribal, and Territorial (SLTT) governments. We stand ready as a resource to help you respond to any cyber incident impacting your office. If we see threats impacting other offices and spreading, we will notify you and give you information to identify the threat. We are committed to keeping members informed and protected against threats to democracy through election-specific threat intelligence and no-cost cybersecurity solutions.
What We Do
The EI-ISAC helps members respond to cyber incidents. Our team will investigate incidents reported to us and provide recommendations to help mitigate the incident. We respond to various incidents, including account or network compromises and analyzing suspicious emails. We're here to be a resource you can reach out to for assistance.
Our team also analyzes ongoing trends to better inform election offices on protecting themselves and their offices. We identify critical commonalities using information from incidents reported to us and open-source reporting. We use this information to send recommendations and alerts to our members. These alerts are timely and actionable, alerting members to ongoing activity and providing solutions to help secure offices.
Members receive full-time access to our 24x7x365 Security Operations Center (SOC) that constantly monitors for threats and alerts election offices. We have an incident response team on standby that provides free remediation guidance. If your office needs help with anything suspicious on your network, we have your back and are ready to help. Our other offerings are broken down in the table below:
|Albert||Virtual Service Review (VSR)||Vulnerability Disclosure Program (pilot phase)|
|Endpoint Detection and Response (EDR)||Malicious Code Analysis Platform (MCAP)|
|Malicious Domain Blocking and Reporting (MDBR)||Member Alerts|
|Malicious File Analysis|
|Computer Incident Response Team (CIRT)|
How We Differ From Others
You may often hear the EI-ISAC mentioned alongside the Multi-State Information Sharing and Analysis Center® (MS-ISAC®) or the Cybersecurity Infrastructure Security Agency (CISA). While all three of our missions are similar, and the acronyms may sound the same, we focus on a different area. The MS-ISAC focuses on a broad range of entities across the United States, some of which include K-12 schools, libraries, and public utilities. CISA focuses on the cybersecurity of all critical infrastructure within the United States (including elections). The EI-ISAC has a cooperative agreement with CISA. This partnership allows us to provide no-cost cyber resources to election offices.
How You Can Leverage Our No-Cost Resources
Schedule a virtual service review.
- These are a great resource to go over your account and get an in-depth description of the services available to you!
Reach out to us!
- Our team is here to help! We can assist with incident response, answer technical questions, and provide information to keep your office safe. If you have any questions, always feel free to reach out to [email protected]|[email protected].
- The information you share helps us better protect election offices across the country.
Keep your contact info updated!
- Please let us know if email addresses change or individuals on your account leave your office. We want to make sure we send information to the right people!
Let your IT department or provider know endpoint protection and secure DNS is available to election offices at no charge.
The EI-ISAC Cybersecurity Spotlight is a practical explanation of a common cybersecurity concept, event, or practice and its application to Elections Infrastructure security. It is intended to provide EI-ISAC members with a working understanding of common technical topics in the cybersecurity industry. If you would like to request a specific term or practice that may be of interest to the elections community, please contact [email protected].