Risk Analysis and Management
As the Healthcare and Public Health (HPH) Sector Risk Management Agency, CIP supports and coordinates critical infrastructure owners and operators and federal, state, local, tribal, and territorial (FSLTT) government agencies to identify, assess, manage, and mitigate HPH Sector risks to identified
National Critical Functions, in alignment with the
National Infrastructure Protection Plan Risk Management Framework (NIPP). To help stakeholders across the HPH Sector address critical risks, CIP builds capacity across Healthcare and Public Health (HPH) Sector public and private sector partners, enabling capacity building, incident management capabilities, and information sharing to support cross-industry resilience in key areas, including cybersecurity and supply chain.
With information sharing and insight central to its activities, CIP leads collection and analysis of HPH Sector risk data to inform coordinated planning and response efforts, and uses up-to-date data and evidence-based technologies to detect potential sector risks and vulnerabilities. CIP establishes forums for information sharing and develops partner resources, such as the HPH
Risk Identification and Site Criticality (RISC) Toolkit, to support identification, analysis, and reporting of current and emerging threats. Through this data-driven approach, coupled with partner engagement, CIP works to predict, prevent, and respond to threats that may disrupt HPH Sector critical infrastructure.
For more information and questions regarding CIP’s risk analysis activities, contact