Abstract
Since the beginning of 2010 there has been a boom of Public-Private Partnerships (PPPs) with a goal of Critical Infrastructure Protection and Resilience (CIP-R) and Emergency Management (EM) in North America and partly in Europe and Australia as well. Currently having PPPs as one of the main ways to cope with CI interdependencies through engaging all stakeholders in order to build ‘full-spectrum’ resilience, it is important to look up to the best practices. Previous research has set the theoretical base of PPPs and claimed their high potential for enhancing CIP-R that is vastly unexploited due to challenges in their establishment and management. It is now necessary to move forward to studying partnerships’ practical side – common issues they face, ways to overcome them and concrete benefits they are able to bring. Through studying seven cases, this work compares different PPP approaches and their contribution to CIP-R. The study demonstrates how challenges are faced and solved in an innovative way and how the benefits are reached. It also shows approaches and joint activities that support information sharing and trust building as the main ingredients that hold partners together and enable progress in other aspects, from which both public and private parties may benefit. Starting from the findings and a subsequent analysis within and between the seven cases, the study proposes a framework for the development of regional CIP-R. programmes in the context of a PPP.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsFurther Suggested Readings
American Heritage Dictionary of the English Language (1996) 3rd edn
Anderson JJ, Malm A (2006), Public-private partnerships and the challenge of critical infrastructure protection. In: Dunn M, Mauer V (eds) International critical information infrastructure protection handbook 2006, vol II. Center for Security Studies, ETH Zurich, pp 139–167
Auerswald P, Lewis MB, La Porte TM, Michel-Kerjan E (2005) The challenge of protecting critical infrastructure. Issue Sci Technol XXII(1):77–83
Barnes J, Newbold K (2005) Humans as a critical infrastructure: public-private partnerships essential to resiliency and response. First IEEE international workshop on critical infrastructure protection, November 3–4, 2005 – Darmstadt, Germany
Beaton EK, Boiney LG, Drury JL, GreenPope RA, Henriques RD, Howland M, Klein GL (2010) Elements needed to support a crisis management collaboration framework. Integrated Communications Navigation and Surveillance Conference (ICNS), 11–13 May 2010, Herndon, VA
Benbasat I, Goldstein DK, Mead M (1987) The case research strategy in studies of information systems. MIS Q:369–386
Boin A (2005) Designing effective response structures: a discussion of established pitfalls, best practices and critical design parameters. A background paper prepared for the Swedish Tsunami Commission
Boin A, McConnell A (2007) Preparing for critical infrastructure breakdowns: the limits of crisis management and the need for resilience. J Conting Crisis Manag 15(1):50–59
Boone W (2012) Full spectrum resilience: an executive summary, CIP report June 2012. Center for Infrastructure Protection and Homeland Security, George Mason University, Fairfax, VA (USA)
Bouchon S (2006) The vulnerability of interdependent. Critical infrastructures systems: epistemological and conceptual state-of-the-art. Institute for the Protection and Security of the Citizen, EC JRC
Cagno E, De Ambroggi M, and Trucco P (n.d.) Interdependency analysis of CIs in real scenarios. In: Bérenguer G, Soares G (eds) Proceedings of ESREL 2011 – advances in safety, reliability and risk management. Taylor & Francis Group, London, pp 2508–2514, ISBN 978-0-415-68379-1
Cavelty MD, Suter M (2008) Early warning for critical infrastructure protection and the road to public-private information sharing. Inteligencia Y Seguridad 4
Cavelty MD, Suter M (2009) Public-private partnerships are no silver bullet…. Int J Crit Infrastruct Protect 2(4):179–187
COM (2005) European Commission’s communication to the European Parliament, the Council, the European Economic and Social Committee and The Committee of the Regions on Public-Private Partnerships and Community Law on Public Procurement and Concessions, COM(2005) 569 final
COM (2006) Communication from the Commission of 12 December 2006 on a European programme for critical infrastructure protection, COM(2006) 786 final
Comfort LK (2007) Crisis management in hindsight: cognition, communication, coordination, and control. Public Adm Rev 67(Supplement s1):189–197
Conclusions of the European Council of 10/11 December 2009 on ‘The Stockholm programme – an open and secure Europe serving and protecting citizens (2010–2014)’; 17024/09
CRN Report (2009, March) Focal report 2: critical infrastructure protection. Zurich
CRN Roundtable Report (2009, November 27) 6th Zurich roundtable on comprehensive risk analysis and management: network governance and the role of public- private partnerships in New Risks
De Bruijne M, Van Eeten M (2007) Systems that should have failed: critical infrastructure protection in an institutionally fragmented environment. J Contingen Crisis Manag 15(1):18–29
Denzin N (1984) The research act. Prentice Hall, Englewood Cliffs
Department of Homeland Security (DHS) (2006) National infrastructure protection plan (NIPP). Washington, DC
Department of Homeland Security (DHS) (2009) National infrastructure protection plan (NIPP): partnering to enhance protection and resiliency, Washington, DC
Department of Homeland Security (DHS) (2013) National infrastructure protection plan (NIPP): partnering for critical infrastructure security and resilience. Washington, DC
Eisenhardt K (1989) Building theories from case research. Acad Manag Rev 14:532–550
European Commission (2005) Green paper on a European programme for critical infrastructure protection, COM(2005) 576 final
European Commission (2012) Staff working document on the review of the European Programme for Critical Infrastructure Protection (EPCIP), SWD(2012) 190 final
European Commission (EC) (2013) DG Home Affairs – Critical Infrastructures. Available at: http://ec.europa.eu/dgs/home-affairs/what-we-do/policies/crisis-and-terrorism/critical-infrastructure/index_en.htm
European Council (2008) Directive 2008/114/EC of 8 December 2008 on the identification and designation of European critical infrastructures and the assessment of the need to improve their protection. Official Journal of the European Union
FEMA (2011) Five years later: an assessment of the post Katrina Emergency Management Reform Act, Written Statement of Craig Fugate. FEMA Administrator
FEMA (2012) After action report of the first national conference on “Building Resilience through Public-Private Partnerships”, August 3–4, 2011, Washington, DC. Progress published January 2012
Givens AD, Busch NE (2013) Realizing the promise of public-private partnerships in U.S. critical infrastructure protection. Int J Crit Infrastruct Prot 6(1):39–50
Heineman BW Jr (2011) Crisis management failures in Japan’s reactors and the BP spill. Harvard Business Review
Helbing D, Ammoser H, Kuhnert C (2006) Information flows in hierarchical networks and the capability of organizations to successfully respond to failures, crises, and disasters. Phys A Stat Mech Appl 363(1):141–150
Henriques F, Rego D (2008) OASIS tactical situation object: a route to interoperability. In: Proceedings of the 26th annual ACM international conference on Design of communication (SIGDOC 2008). ACM, New York, pp 269–270
Hilton BN (2007) Emerging spatial information systems and applications. Idea Group Publishing, Hershey
Kozine I, Andersen HB (2015) Integration of resilience capabilities for critical infrastructures into the emergency management set-up. In: Proceedings of the annual European safety and reliability conference – ESREL 2015 conference, September 2015, Zurich, Switzerland
Kröger W (2008) Critical infrastructures at risk: a need for a new conceptual approach and extended analytical tools. Reliab Eng Syst Saf 93(12):1781–1787
Lecomte EL, Pang AW, Russell JW (1998) Ice storm 98, The Institute for Catastrophic Loss Reduction (ICLR). Diane Pub Co, Toronto
Lemyre L, Pinsent C, Boutette P, Corneil W, Riding J, Riding D, Johnson C, Lalande-Markon M, Gibson S, Lemus C (2011) Research using in vivo simulation of meta-rganizational Shared Decision Making (SDM). Task 3: testing the shared decision making framework in vivo. Defence Research and Development Canada Ottawa (Ontario), Centre For Security Science
Lombardy Region (2007) Regione Lombardia: PRIM 2007–2010, Programma Regionale Integrato di Mitigazione dei Rischi, Studi Preparatori – Incidenti ad elevata rilevanza sociale in Lombardia, Regione Lombardia – Protezione civile, Prevenzione e Polizia Locale, 2007 (in Italian)
McEvily B, Perrone V, Zaheer A (2003) Trust as an organizing principle. Organ Sci 14:91–103
McNally RK, Lee S-W, Yavagal D, Xiang W-N (2007) Learning the critical infrastructure interdependencies through an ontology-based information system. Environ Plan B Plan Des 34(6):1103–1124
Meredith J (1998) Building operations management theory through case and field research. J Oper Manag 16:441–454
Moteff JD, Stevens GM (2003, January 29) Congressional research service, critical infrastructure information disclosure and homeland security, RL31547
Moynihan DP (2009) The network governance of crisis response: case studies of incident command systems. J Public Adm Res Theory 19(Issue 4):895–915
Natarajan N (2013) Partnerships and information sharing: The administration’s efforts to enhance critical infrastructure security and resilience. CIP report April 2013, Center for Infrastructure Protection and Homeland Security, George Mason University, VA (USA)
National Commission on the BP Deepwater Horizon Oil Spill and Offshore Drilling (2011) Final report: BP deepwater horizon oil spill and offshore drilling, released January 11th, 2011
National Incident Management Systems and Advanced Technologies (NIMSAT) Institute (2012a), Big business – small business mentorship program launches for enhanced disaster resiliency, press release on June 1st, 2012
National Incident Management Systems and Advanced Technologies (NIMSAT) Institute (2012b) Compendium of public-private partnerships for emergency management
National Infrastructure Advisory Council (NIAC) (2006) Public-private sector intelligence coordination – final report and recommendations by the council
National Infrastructure Advisory Council (NIAC) (2009) Critical infrastructure resilience – final report and recommendations, September 8, 2009
National Infrastructure Advisory Council (NIAC) (2012) Intelligence information sharing, Final Report and Recommendations
NATO (2007) Architecture Framework v3
Ouyang M (2014) Review on modeling and simulation of interdependent critical infrastructure systems. Reliab Eng Syst Saf 121:43–60
Percy S (2007) Mercenaries: strong norm, weak law. Int Organ 61:367–397
Petrenj B, Lettieri E, Trucco P (2012) Towards enhanced collaboration and information sharing for critical infrastructure resilience: current barriers and emerging capabilities. Int J Critic Infrastruct Spec Issue Next Gen Critic Infrastruct Syst Challeng Sol Res 8(2/3):107–120
Petrenj B, De Ambroggi M, Trucco P (2013) Simulation-based characterisation of critical infrastructure system resilience: application to a snowfall scenario. In: Proceedings of ESREL 2013
Prieto DB (2006) Information sharing with the private sector: history, challenges, innovation, and prospects. In: Auerswald PE, Branscomb LM, La Porte TM, Michel- Kerjan EO (eds) Seeds of disaster, roots of response: How private action can reduce public vulnerability. Cambridge University Press, Cambridge, pp 404–428
Provan K, Kenis P (2008) Modes of network governance: structure, management, and effectiveness. J Public Adm Res Theory 18(Issue 2):229–252
Pursiainen C (2009) The challenges for European critical infrastructure protection. J Eur Integr 31(6):721–739
Reason P, Bradbury H (eds) (2008) The sage handbook of action research: participative inquiry and practice. Sage, Thousand Oaks
Robert B, Morabito L (2010) An approach to identifying geographic interdependencies among critical infrastructures. Int J Crit Infrastruct 6(1):17–30
Robert B, Morabito L, Quenneville O (2007) The preventive approach to risks related to interdependent infrastructures. Int J Emerg Manag 4(2)
Robert B, de Calan R, Morabito L (2008) Modelling interdependencies among critical infrastructures. Int J Crit Infrastruct 4(4):392–408
Roby CJ, Alberts DS (2012) NATO NEC C2 maturity model. DoD command and control research program. Washington, DC. Available at: www.dodccrp.org
Schraagen JM, Veld MH, De Koning L (2010) Information sharing during crisis management in hierarchical vs. network teams. J Conting Crisis Manag 18(2):117–127
Seuring S (2008) The rigor of case study research in supply chain management. Supply Chain Manag Int J 13(2):128–137
Shani AB, Pasmore WA (1985) Organization inquiry: towards a new model of the action research process. In: Warrick D (ed) Contemporary organization development. Scott, Foresman, Glenview, pp 438–448
Shani AB, David A, Willson C (2004) Collaborative research: alternative roadmaps. In: Adler N, Shani AB, Styhre A (eds) Collaborative research in organisations, foundations for learning, change and theoretical development. Sage Publications, Thousand Oaks, pp 83–100
Sue E (2005) Eckert, protecting critical infrastructure: the role of the private sector in guns and butter. In: Dombrowski P (ed) The political economy of international security. Lynne Rienner Publishers, Boulder
Susman GI, Evered RD (1978) An assessment of the scientific merit of action research. Adm Sci Q 23:583–603
The White House (2013) Presidential Policy Directive – Critical Infrastructure Security and Resilience (PPD-21). Available at: http://www.whitehouse.gov/the-press-office/2013/02/12/presidential-policy-directive-critical-infrastructure-security-and-resil
Trucco P, Cagno E, De Ambroggi M (2012) Dynamic functional modelling of vulnerability and interoperability of critical infrastructures. Reliab Eng Syst Saf 105:51–63. doi:10.1016/j.ress.2011.12.003
Trucco P, Petrenj B, Bouchon S, Di Mauro C (2015) The rise of regional programmes on critical infrastructure resilience: identification and assessment of current good practices. WIT Transac Built Environ 150:233–245
Trucco P, Petrenj B, Kozine I, Andersen BH (2016) Emergency management involving critical infrastructure disruptions: operationalizing the deployment of resilience capabilities. In: Walls R, Bedford (eds) (2017) Risk, reliability and safety: innovating theory and practice, ESREL 2016.Taylor & Francis Group, London, pp 548–555, ISBN 978-1-138-02997-2
U.S. DHS (2012) Homeland security grant program – supplemental resource: support for public-private collaboration
U.S. President’s Commission on Critical Infrastructure Protection (1997)
United Nations (2005) Report of the world conference on disaster prevention, Kobe (Hyogo, Japan), 18–22, January 2005
United Nations (2006) International Strategy for Disaster Reduction (UN/ISDR, 2006) – platform for the promotion of early warning. Available at: http://www.unisdr.org/2006/ppew/whats-ew/basics-ew.htm
United States General Accounting Office (US GAO) (2004) Critical infrastructure protection. Establishing Effective Information Sharing with Infrastructure Sectors
US Department of Homeland Security (US DHS) (2013) US Department of Homeland Security (US DHS) website. Critical infrastructure protection partnerships and information Sharing (http://www.dhs.gov/critical-infrastructure-protection-partnerships-and-information-sharing), visited on 10/04/2013
Voss C, Tsikriktsis N, Frohlich M (2002) Case research in operations management. Int J Oper Prod Manag 22(2):195–219
Walsham G (1995) The emergence of interpretivism in IS research. Inf Syst Res 6(4):376–394
Whyte WF, Greenwood D, Lazes P (1989) Participatory action research. Am Behav Sci 32:513–551
Willis HH, Lester G, Treverton GF (2009) Information sharing for infrastructure risk management: barriers and solutions. Intellig Nat Secur 24(3):339–365
Yin R (2003) Case study research: design and methods. Sage Publications, Thousand Oaks
Acknowledgment
The authors would like to express their gratitude to all the people involved in the four PPPs and collaborating organizations – namely, Centre Risque & Performance (CRP), Department of Mathematics and Industrial Engineering at École Polytechnique de Montréal (Québec, Canada), Organization of Civil Protection of Montreal (L’Organisation de sécurité civile de l’agglomération de Montréal – OSCAM), National Incident Management Systems and Advanced Technologies (NIMSAT) Institute at University of Louisiana, Lafayette (LA, USA), Pacific NorthWest Economic region, Seattle (WA, USA), GAP-Santé research unit at University of Ottawa (Ontario, Canada), Directorate General on Security and Civil Protection, Lombardy Region (Milan, Italy), Scottish Government (UK), Kennemerland Safety Region (The Netherlands), Oresundsbron (Denmark-Sweden), Technical University of Denmark (DTU), Danish Emergency Management Agency (DEMA) and Copenhagen Capital Region Pre-Hospital Services (Pre-Hosp) – for their help, time, collaborative efforts, availability for interviews, documentation and kind hospitality.
The present study has been funded with support from European Commission, under CIPS/ISEC Work Programme. The financial support is gratefully acknowledged. This publication reflects the views only of the author, and the European Commission cannot be held responsible for any use which may be made of the information contained therein.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2017 Springer Science+Business Media B.V.
About this paper
Cite this paper
Trucco, P., Petrenj, B. (2017). Resilience of Critical Infrastructures: Benefits and Challenges from Emerging Practices and Programmes at Local Level. In: Linkov, I., Palma-Oliveira, J. (eds) Resilience and Risk. NATO Science for Peace and Security Series C: Environmental Security. Springer, Dordrecht. https://doi.org/10.1007/978-94-024-1123-2_8
Download citation
DOI: https://doi.org/10.1007/978-94-024-1123-2_8
Published:
Publisher Name: Springer, Dordrecht
Print ISBN: 978-94-024-1122-5
Online ISBN: 978-94-024-1123-2
eBook Packages: Computer ScienceComputer Science (R0)