Security Information Sharing Among Transit Agencies

U.S. Government Accountability Office

About your Agency

	To learn more about completing the questionnaire, printing your responses, and who to contact if you have technical questions, click here for help.

	(View responses)

1.	Who is the primary person responsible for completing this questionnaire? Enter letters or numbers in each box below.

	(View responses)

	Name: (View responses)
	Title: (View responses)
	Organization: (View responses)
	Phone: (View responses)
	Email: (View responses)

2.	What kind of transportation services does your agency provide? Click yes or no in each row. If you operate a trolley or streetcar service, please classify this as "light rail."

	(View responses)

		Yes	No
	a. Heavy rail (View responses)
	b. Light rail (View responses)
	c. Commuter rail (View responses)
	d. Bus (including inner-city transit, local bus, and commuter bus) (View responses)
	e. Paratransit (View responses)
	f. Vanpool (View responses)
	g. Ferry (View responses)
	h. Other - Please describe in the box below (View responses)

	IF OTHER:

	(View responses)

3.	Does your transit agency have its own dedicated police department? (i.e., a police force that is part of your agency.)

	1.	Yes (Click here to go to Question 4)
	2.	No (Go to Question at right) →
	(View responses)

	a. IF NO: What is the entity or entities that provide policing and security services for your transit agency? (Please list each entity.)

	(View responses)

4.	Do you or a designated official in your agency (who is responsible for receiving and acting on security-related information) have a secret or top secret security clearance in order to receive classified intelligence reports?

	1.	Yes (Continue with next Question)
	2.	No (Click here to go to Question 6)
	3.	Don't know (Click here to go to Question 6)
	(View responses)

5.	In the last 12 months, have you received any classified intelligence products (e.g., classified reports or briefings) from the federal government?

	1.	Yes
	2.	No
	3.	Don't know
	(View responses)

PT-ISAC

	The following questions pertain to the Public Transportation Information Sharing and Analysis Center, or PT-ISAC. The PT-ISAC collects, analyzes, and distributes security and threat information from government and open sources to participating public transportation agencies through email alerts. It is a free service operated by the American Public Transportation Association (APTA) and funded by the Department of Homeland Security.

	(View responses)

6.	Does your agency currently receive security-related information from the PT-ISAC?

	1.	Yes (Continue with next Question)
	2.	No (Click here to go to Question 12)
	3.	Don't know (Click here to go to Question 13)
	(View responses)

7.	How satisfied are you with the following quality aspects of the security-related information you receive from the PT-ISAC?

	(View responses)

		Very satisfied	Somewhat satisfied	Neither satisfied nor dissatisfied	Somewhat dissatisfied	Very dissatisfied	No opinion / Don't know
	a. Relevance (i.e., is the information sufficiently relevant to be of value to your agency?) (View responses)
	b. Validity (i.e., is the information accurate?) (View responses)
	c. Timeliness (i.e., do you receive the information in a timely manner?) (View responses)
	d. Completeness (i.e., does the information contain all the necessary details?) (View responses)
	e. Actionability (i.e., would the information allow you to change your agency's security posture, if such a change was warranted?) (View responses)
	f. Access / Ease of Use (is information available through the PT-ISAC easy to obtain?) (View responses)

8.	How redundant (i.e., essentially the same or very similar) is the security-related information you receive through the PT-ISAC as compared to the security-related information you receive through other sources?

	1.	Completely redundant
	2.	Mostly redundant
	3.	Somewhat redundant
	4.	Slightly redundant
	5.	Not al all redundant
	6.	No opinion / Don't know
	(View responses)

9.	Overall, how satisfied are you with the security-related information you receive through the PT-ISAC?

	1.	Very satisfied
	2.	Somewhat satisfied
	3.	Neither satisfied nor dissatisfied
	4.	Somewhat dissatisfied
	5.	Very dissatisfied
	6.	No opinion
	(View responses)

10.	Do you believe the PT-ISAC needs to be improved?

	1.	Yes (Continue with next Question)
	2.	No (Click here to go to Question 13)
	(View responses)

11.	How could the PT-ISAC be improved?

	(View responses)

	IF YOU DO CURRENTLY RECEIVE INFORMATION FROM THE PT-ISAC:

	Click here to skip to Question 13
	(View responses)

12.	Why does your agency choose not to receive security-related information from the PT-ISAC?

	(View responses)

		Reason	Not a reason
	a. I've never heard of the PT-ISAC. (View responses)
	b. I get all the security-related information I need from other sources. (View responses)
	c. I used to receive security-related information from the PT-ISAC, but I didn't find the information useful. (View responses)
	d. I have no need for security-related information. (View responses)
	e. Other - Please describe in the box below. (View responses)

	IF OTHER:

	(View responses)

13.	Please use the space below to provide any additional comments about the PT-ISAC.

	(View responses)

HSIN

	The next series of questions focuses on the Homeland Security Information Network, or HSIN. HSIN is web-based platform operated by the U.S. Department of Homeland Security to facilitate Sensitive But Unclassified information sharing and collaboration between federal, state, local, tribal, and private sector entities.

	(View responses)

14.	Does your agency currently have a log-in access to HSIN?

	1.	Yes (Continue with next Question)
	2.	Yes, but lost/forgot log-in information (Click here to go to Question 23)
	3.	No (Click here to go to Question 22)
	4.	Don't know (Click here to go to Question 23)
	(View responses)

15.	If so, to which of the following portal(s) does your agency have access? (Note: If you are not sure which portal your agency uses, please consult with other security officials at your agency. If you are still not sure, select the "Don't Know" response and continue to the next question).

	(View responses)

		Yes	No	Don't know
	a. HSIN - Critical Sectors (CS) (View responses)
	b. HSIN - Emergency Management (EM) (View responses)
	c. HSIN - Mass Transit (View responses)
	h. Other - Please describe in the box below (View responses)

	IF OTHER:

	(View responses)

16.	How frequently does your agency access security-related information on HSIN?

	1.	Daily
	2.	Several times per week
	3.	Several times per month
	4.	Once per month or less
	5.	Never
	6.	Don't know
	(View responses)

17.	How satisfied are you with the following quality aspects of the security-related information you obtain through HSIN?

	(View responses)

		Very satisfied	Somewhat satisfied	Neither satisfied nor dissatisfied	Somewhat dissatisfied	Very dissatisfied	No opinion/ Don't know
	a. Relevance (i.e., is the information sufficiently relevant to be of value to your agency?) (View responses)
	b. Validity (i.e., is the information accurate?) (View responses)
	c. Timeliness (i.e., do you receive the information in a timely manner?) (View responses)
	d. Completeness (i.e., does the information contain all the necessary details?) (View responses)
	e. Actionability (i.e., would the information allow you to change your agency's security posture, if such a change was warranted?) (View responses)
	f. Access / Ease of Use (is information available through HSIN easy to obtain?) (View responses)

18.	How redundant (i.e., essentially the same or very similar) is the security-related information you receive through HSIN as compared to the security-related information you receive through other sources?

	1.	Completely redundant
	2.	Mostly redundant
	3.	Somewhat redundant
	4.	Slightly redundant
	5.	Not al all redundant
	6.	No opinion / Don't know
	(View responses)

19.	Overall, how satisfied are you with the security-related information you receive through HSIN?

	1.	Very satisfied
	2.	Somewhat satisfied
	3.	Neither satisfied nor dissatisfied
	4.	Somewhat dissatisfied
	5.	Very dissatisfied
	6.	No opinion
	(View responses)

20.	Do you believe HSIN needs to be improved?

	1.	Yes (Continue with next Question)
	2.	No (Click here to go to Question 23)
	(View responses)

21.	How could HSIN be improved?

	(View responses)

	IF YOU DO CURRENTLY HAVE A LOG-IN ACCESS TO HSIN:

	Click here to skip to Question 23
	(View responses)

22.	Why does your agency choose not to use HISN?

	(View responses)

		Reason	Not a reason
	a. I've never heard of HISN. (View responses)
	b. I get all the security-related information I need from other sources. (View responses)
	c. I used to have access to HISN, but I didn't find the security-related information useful. (View responses)
	d. I have no need for security-related information. (View responses)
	e. Other - Please describe in the box below. (View responses)

	IF OTHER:

	(View responses)

23.	Please use the space below to provide any additional comments about HSIN.

	(View responses)

Other Mechanisms

	The next question will ask you about other information sharing mechanisms you might use. For each mechanism, please indicate whether you use it to receive security-related information. If you do use a particular mechanism, click the corresponding link to open a short set of questions about it. If you are not sure whether your agency uses the mechanism, please consult with other security officials at your agency. If you are still not sure, select the "Don't Know" response and skip to the next mechanism. You will be asked about 16 mechanisms in all.

	(View responses)

24.	Does your agency use any of the following mechanisms to receive security-related information? For mechanisms you use, also click the link to the right to open a second series of questions about your opinions of each mechanism.

	(View responses)

Information sharing mechanism

Do you use this?

If "Yes" -- click link to open additional questions.

24a.	Joint Terrorism Task Force (JTTF) (JTTFs are small cells of investigators, analysts, and other specialists from law enforcement and intelligence agencies. They are designed to combine the resources of federal, state, and local law enforcement.)
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)

24b.	Fusion Center(s) (A fusion center is a collaborative effort of two or more agencies that provide resources, expertise, and information to the center to improve the ability to detect, prevent, and respond to criminal and terrorist activity.)
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)

24c.	Transportation Security Operations Center (TSOC) (The TSOC is TSA's operational center for managing all types of transportation security incidents.)
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)

24d.	DHS/FTA Transit Safety & Security Roundtables (bi-annual meetings that are typically attended by officials representing TSA, FTA, FEMA, and the largest 50 public transit agencies nationwide)
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)

Information sharing mechanism

Do you use this?

If "Yes" -- click link to open additional questions.

24e.	Other public transportation systems
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)

24f.	FTA email alerts (i.e., emails from Tony Tisdale)
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)

24g.	TSA email alerts (i.e., emails from Tom Farmer or other TSA officials)
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)

24h.	Industry association (e.g., the American Public Transportation Association)
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)

Information sharing mechanism

Do you use this?

If "Yes" -- click link to open additional questions.

24i.	Regional/state/local information sharing system Please specify in the box below:
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)


	(View responses)


	(View responses)


	(View responses)

24j.	Regional/state/local emergency operations center Please specify in the box below:
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)


	(View responses)


	(View responses)


	(View responses)

Information sharing mechanism

Do you use this?

If "Yes" -- click link to open additional questions.

24k.	Law Enforcement Online (LEO) system (LEO is a Department of Justice information sharing system that allows users to access FBI law enforcement sensitive information.)
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)

24l.	DHS Protective Security Advisors (PSAs) (PSAs are infrastructure and vulnerability assessment specialists who provide a communications channel between critical infrastructure owners/operators and DHS)
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)

24m.	National Open Source Center (www.opensource.gov. The National Open Source Center provides translations, reporting, and analysis on foreign policy and national security issues. Information is obtained from publications, television and radio stations, and Internet sources worldwide.)
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)

24n.	Federal Protective Service (FPS) Secure Portal (The FPS Secure Portal enables law enforcement entities to share information in a protected environment over the internet. It also allows access to federal, state and local agency reporting.)
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)

Information sharing mechanism

Do you use this?

If "Yes" -- click link to open additional questions.

24o.	FBI's Regional Information Sharing Systems - Automated Trusted Information Exchange (RISS-ATIX) (RISS ATIX helps state and local jurisdictions share information in support of their homeland security missions. It is available to law enforcement entities as well as governmental and non-governmental agencies and organizations that have public safety responsibilities.)
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)

24p.	Transportation Information Sharing System (TISS) (TISS receives, assesses, and distributes intelligence information related to transportation security to Federal Air Marshals and other federal, state, and local law enforcement entities.)
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)

24q.	Other mechanism Please specify in the box below:
	(View responses)

			Yes →
			No
			Don't know
	(View responses)

	DB: ptisac2, URL: ptisac2
	(View responses)


	(View responses)


	(View responses)


	(View responses)

Other Sectors

	The next three questions will ask you about security information that directly pertains to other sectors (e.g., aviation, energy, water), but that also potentially may be relevant to your agency.

	(View responses)

25.	How important is it for your agency to receive security-related information about other sectors that also may be relevant to your agency? (e.g., information about bridges or tunnels, airports, waterways, power plants, water treatment facilities, or other critical infrastructure that is geographically proximate or otherwise relevant to public transit.)

	1.	Very important
	2.	Important
	3.	Moderately important
	4.	Of little importance
	5.	Not at all important
	6.	No opinion / Don't know
	(View responses)

26.	How would you characterize the amount of security-related information you receive about other sectors that also may be relevant to your agency?

	1.	Far too much
	2.	Too much
	3.	About the right amount
	4.	Too little
	5.	Far too little
	6.	No opinion / Don't know
	(View responses)

27.	How satisfied is your agency with the security-related information you receive about other sectors that also may be relevant to your agency?

	1.	Very satisfied
	2.	Somewhat satisfied
	3.	Neither satisfied nor dissatisfied
	4.	Somewhat dissatisfied
	5.	Very dissatisfied
	6.	No opinion / Don't know
	(View responses)

Overall Assessment

	The last questions relate to the state of security-related information sharing as a whole. When responding to these questions, please consider all the security-related information you receive as well as all of the mechanisms you use to receive it.

	(View responses)

28.	Over the last 2 years, do you believe that federal efforts to share security-related information with public transit agencies have improved or worsened?

	1.	Greatly improved
	2.	Somewhat improved
	3.	Neither improved nor worsened
	4.	Somewhat worsened
	5.	Greatly worsened
	6.	No opinion / Don't know
	(View responses)

29.	Considering all of the security-related information you receive, as a whole, how satisfied is your agency with this information?

	1.	Very satisfied
	2.	Somewhat satisfied
	3.	Neither satisfied nor dissatisfied
	4.	Somewhat dissatisfied
	5.	Very dissatisfied
	6.	No opinion / Don't know
	(View responses)

30.	Considering all of the security-related information you receive and all of the mechanisms you use to receive it, how (if at all) could the value of this information and/or the mechanisms through which it is provided be improved?

	(View responses)

31.	Please use the space below to provide any any further comments your agency may have on any of the questions above, or related issues.

	(View responses)

Finished?

32.	Have you finished this questionnaire?

	1.	Yes
	2.	No
	(View responses)

	To get a copy of your answers to this questionnaire, click "View and print a summary of your responses" in the menu on the left

	(View responses)

Questionnaire Programming Language - Version 6.0
U.S. Government Accountability Office

Security Information Sharing Among Transit Agencies

U.S. Government Accountability Office

About your Agency

PT-ISAC

HSIN

Other Mechanisms

Other Sectors

Overall Assessment

Finished?

Menu

Summary

Help

Progress

Navigate