How does Risk information change depending on different decision-makers? Describe one scenario and explain how different decision-makers (e.g., a facility manager, a governor, a public health official, or a federal infrastructure protection official, etc.) would have different needs for inputs and outputs.
Discuss who “owns” risk associated with critical infrastructure nationally, regionally, or locally. Discuss the same issue in the cyber world.
What are some of the key roles and responsibilities of government, industry, academia, and other non-governmental organizations with respect to critical infrastructure risk?