This document is a supplement to "NIPP [National Infrastructure Protection Plan] 2013: Partnering for Critical Infrastructure Security and Resilience". "Assessing vulnerabilities of critical infrastructure is an important step in developing security solutions and managing critical infrastructure risk. The Department of Homeland Security's (DHS) National Protection and Programs Directorate (NPPD) works with owners and operators to conduct vulnerability assessments of select critical infrastructure to inform its internal risk management processes and provide technical assistance to its State, local, tribal, and territorial (SLTT) and private sector partners to enable their own risk assessments and security plans. NPPD provides additional resources, typically in the form of informational material on known vulnerabilities, to help owners and operators understand vulnerabilities at a more general level. The Homeland Security Act of 2002 and Presidential Policy Directive 21 (PPD-21) direct the DHS Secretary to conduct comprehensive assessments of the vulnerabilities of the Nation's critical infrastructure, in coordination with the Sector-Specific Agencies (SSAs) and in collaboration with SLTT entities and critical infrastructure owners and operators. This supplement provides information on Federal resources that are used by DHS and available to SLTT governments and critical infrastructure owners and operators to identify and assess critical infrastructure vulnerabilities."
U.S. Department of Homeland Security: http://www.dhs.gov/