2nd ENISA Workshop German CERT-Activities. 5 th October, 2006 Brussels
|
|
- Esmond Shaw
- 6 years ago
- Views:
Transcription
1 2nd ENISA Workshop German CERT-Activities 5 th October, 2006 Brussels
2 Overview Hosting Organisation CERT-Bund Background Projects CERT Services German CERT Activities International Cooperation Lessons Learned Jedlicka Hans-Peter 5 th October 2006 Folie 2
3 Bundesamt für Sicherheit in der Informationstechnik (BSI) Federal Office for Information Security Jedlicka Hans-Peter 5 th October 2006 Folie 3
4 Facts and Figures about BSI Established in 1991 Federal Superior Authority part of to the Federal Ministry of the Interior 430 staff (computer scientists, engineers, mathematicians, physicists) Budget: some 51 million Euro Jedlicka Hans-Peter 5 th October 2006 Folie 4
5 Customer Focus on Government and Administration Security consulting and support R & D of encryption devices Emission Security, Counter-Eavesdropping Operation of the Berlin-Bonn government net CERT Support of the e-government initiative Citizens Awareness campaign common user orientated give away CD BSI - web site Frequent articles in computer magazines Science Cooperation with universities Research contracting Trend analysis Private sector Promotion of electronic signatures IT Grundschutz as an industry standard Certification of IT-products Critical infrastructures IT Security partnership Promotion of biometric methods Jedlicka Hans-Peter 5 th October 2006 Folie 5
6 Section 121 CERT-Bund Jedlicka Hans-Peter 5 th October 2006 Folie 6
7 Background (1) hosted by the Federal Office for Information Security (BSI) part of the Federal Ministry of Interior (BMI) initially created as virtual team 1994, named as BSI-CERT mainly focused on information gathering shift in paradigms in 2000 preparing to set up a real Computer Emergency Response Team Jedlicka Hans-Peter 5 th October 2006 Folie 7
8 Background (2) officialy established on 1st September 2001 renamed as CERT-Bund governmental CERT for the Federal Administration becoming the national CERT Jedlicka Hans-Peter 5 th October 2006 Folie 8
9 Department 1 Strategic Applications, Internet Security Organizational Chart Division 11 Strategic Applications Section 112 Network Platforms and Infrastructures, IVBB Division 12 Internet Security Section 121 Federal Government CERT, Crisis Response Centre Section 122 Internet Security Analysis and Security Procedures Core team 10 people Section 125 IT-Penetration Centre Section 126 Critical Infrastructures Close cooperation with other sections based on a case by case situation. Jedlicka Hans-Peter 5 th October 2006 Folie 9
10 Team of CERT-Bund 1 Team Leader 3 Senior Advisor 5 Security Specialists 1 Secretary Jedlicka Hans-Peter 5 th October 2006 Folie 10
11 Services provided by CERT-Bund Providing central PoC 24/7 for the Federal Administration Running a Situation Centre for monitoring public sources Analyzing incoming incident reports and other information about vulnerabilities Supporting the investigation of incidents and the recovery process Coordinating incident handling & malware reports Jedlicka Hans-Peter 5 th October 2006 Folie 11
12 Services provided by CERT-Bund Disseminating advisories or information on counter measures and/or workarounds by running a Warning & Information Service Running a telephone based Alerting Service for the Federal Administration New: Providing the national PoC for international Cooperation Coming soon: Running the National Crisis Response Centre Jedlicka Hans-Peter 5 th October 2006 Folie 12
13 Strategic Objectives National Plan for Information Infrastructure Protection (NPSI) Prevention: Protecting information infrastructure adequately Preparedness: Responding effectively to IT security incidents Sustainability: Enhancing German competence in IT security Setting international standards Jedlicka Hans-Peter 5 th October 2006 Folie 13
14 Main Tasks Goal 8: Identifying, registering and evaluating incidents [...] will play the role of a national command, control and analysis centre that will be able to provide a reliable assessment of the current IT security situation in Germany at any time [...]. Goal 10: Responding to IT security incidents [...] to respond rapidly to serious incidents. It provides incident analyses and assessments to all relevant bodies and coordinates the cooperation [...] Jedlicka Hans-Peter 5 th October 2006 Folie 14
15 German CERT Activities Jedlicka Hans-Peter 5 th October 2006 Folie 15
16 History of CERTs in Germany Since 1991 many german CERTs / CSIRTs emerged Micro-BIT 1993 DFN-CERT (University of Karlsruhe) (German Research Network) 1994 BSI-CERT / CERT-Bund (Federal Office for Information Security)... and the process of creating Emergency Response Teams is going on CERT-Bw (German Armed Forces) 2003 Mcert (Small & Medium Enterprises) 2005 Bürger-CERT (easy to understand Alert & Warning Service for the average citizen) 200x other CERTs within different Sectors and important Global Players are still following up Jedlicka Hans-Peter 5 th October 2006 Folie 16
17 National Network of CERTs CERTs of Companies / Enterprises CERT-Bw Commercial CERTs Equal amongst equals! CERTs der Bundesländer CERTs for akademic Sector CERT-Bund Jedlicka Hans-Peter 5 th October 2006 Folie 17
18 CERT-Cooperations within Germany CERT Working Group ( CERT-Arbeitsgruppe ) about 30 german CERTs organised in an inofficial working group regular meetings 2 per year CERT Alliance ( CERT-Verbund ) 19 very closely cooperating CERTs, based on signed Code of Conduct & NDA Jedlicka Hans-Peter 5 th October 2006 Folie 18
19 Jedlicka Hans-Peter 5 th October 2006 Folie 19
20 Jedlicka Hans-Peter 5 th October 2006 Folie 20
21 Projects German Advisory Format (DAF) special exchange format for advisories based on EISPP Common Advisory Format Description ( standardized Common Model of System Information (CMSI) incorporated in SIRIOS Incident Handling System (SIRIOS) initiated and funded by CERT-Bund modular application framework focused on incident management and vulnerability handling licensed under the GNU General Public License (GPL) National Early Warning Capability ( CarmentiS ) initiated and funded by CERT-Bund to test the concept for the infrastructure to test new forms of visualization and automatic detection co-operative Information Management and Analysis Platform to recognize and assess current threats in a timely matter Jedlicka Hans-Peter 5 th October 2006 Folie 21
22 Jedlicka Hans-Peter 5 th October 2006 Folie 22
23 Early Warning in the German Internet ( CarmentiS ) Jedlicka Hans-Peter 5 th October 2006 Folie 23
24 Closing the Gaps Mcert Big companies & enterprises usually well protected traditional risk assessment & risk management established procedures professional IT administration What about Small & medium enterprises? Jedlicka Hans-Peter 5 th October 2006 Folie 24
25 Mcert Jedlicka Hans-Peter 5 th October 2006 Folie 25
26 Closing the Gaps Bürger-CERT For? Citizens and Small Business Companies From? Federal Office for Information Security (BSI) and Mcert German Association for IT-Security sponsored by leading business-partners such as: Why? Awareness raising; pointing out the dangers and risks of the Internet use; providing timely Alerts & Warnings; advising counter measures; How? Understandable safety information How much? Free Where? Jedlicka Hans-Peter 5 th October 2006 Folie 26
27 Bürger-CERT Jedlicka Hans-Peter 5 th October 2006 Folie 27
28 International Cooperation Jedlicka Hans-Peter 5 th October 2006 Folie 28
29 International CERT-Cooperation bilateral projects European Governmental CERT (EGC)- Group Cooperation between TERENA / TF-CSIRT An Initiative of TERENA - Trans-European Research and Education Networking Association APCERT Asia Pacific Computer Emergency Response Team FIRST Global Coalition forming the Forum of Incident Response and Security Teams Jedlicka Hans-Peter 5 th October 2006 Folie 29
30 European Governmental CERT Group Finland - CERT-FI France - CERTA Germany - CERT-Bund Netherlands - GOVCERT.NL Norway - NorCERT Sweden - SITIC Switzerland - SWITCH-CERT United Kingdom - UNIRAS/NISCC Jedlicka Hans-Peter 5 th October 2006 Folie 30
31 European Governmental CERT Group EGC is based on common interests strengthens the member organisations is an operational group is based on active participation is part of an international environment welcomes external contacts maintains a public web site (coming soon) can be reached via egc-group.org Jedlicka Hans-Peter 5 th October 2006 Folie 31
32 Lessons learned Jedlicka Hans-Peter 5 th October 2006 Folie 32
33 Lessons Learned (1) Prepare as much as possible Preparing analysis of constituency Critical scrutiny of services to be provided Definition of Service-Level-Agreements Definition of policies Clarification of mandate Clarification of authority Providing human, technical and financial resources Acquiring and extending competence Not everything can be envisioned right from the start Objectives might change over time Jedlicka Hans-Peter 5 th October 2006 Folie 33
34 Lessons Learned (2) Do not underestimate promotion of the team and the services Coordination with partners and constituency travel budget, human resources, time Initiating and extending relations to national and international CERTs, providers and law enforcement Progress is sometimes very slow IT security is not for free! But you can start small and grow with your responsibilty Jedlicka Hans-Peter 5 th October 2006 Folie 34
Two Aspects of Exercising Cyber Incidents
Two Aspects of Exercising Cyber Incidents Susanne Jantsch Federal Office for Information Security Situation Centre and CERT-Bund ENISA's 1 st International Conference on Cyber Exercises Paris, 27 June
More informationBradford J. Willke. 19 September 2007
A Critical Information Infrastructure Protection Approach to Multinational Cyber Security Events Bradford J. Willke 19 September 2007 Overview A framework for national Critical Information Infrastructure
More informationNational Cyber Security Strategy 2016
National Cyber Security Strategy 2016 26th of April 2017, Athens Samuel Rothenpieler, International Relations Advisor, Federal Office for Information Security (BSI) Mission Statement of the German Federal
More informationPresentation to the ITU on the Q-CERT Incident Management Team. Ian M Dowdeswell Incident Manager, Q-CERT
Presentation to the ITU on the Q-CERT Incident Management Team Ian M Dowdeswell Incident Manager, Q-CERT 2 Q-CERT Mission The Mission of Q-CERT is to be a world-class center of excellence providing expert
More informationBuilding Global CSIRT Capabilities
Building Global CSIRT Capabilities Barbara Laswell, Ph.D. September 2003 CERT Centers Software Engineering Institute Carnegie Mellon Pittsburgh, PA 15213 Sponsored by the U.S. Department of Defense 1 2003
More informationGermany: Report on Developments in the Field of Information and Telecommunications in the Context of International Security (RES 68/243),
Germany: Report on Developments in the Field of Information and Telecommunications in the Context of International Security (RES 68/243), General appreciation of the issues of information security The
More informationWorking with the EU Directive High common level of network and information security. Martin Apel, SANS ICS Summit, Munich und
Working with the EU Directive High common level of network and information security Martin Apel, SANS ICS Summit, Munich und 18.06.2018 Outline 1. Overview over NIS-Directive 2. Who is an operator of essential
More informationNIS-Directive and Smart Grids
NIS-Directive and Smart Grids Workshop on European Smart Grid Cybersecurity: Emerging Threats and Countermeasures Marie Holzleitner Table of Content Aims & Objectives Affected Parties Selected Requirements
More informationDefining Computer Security Incident Response Teams
Defining Computer Security Incident Response Teams Robin Ruefle January 2007 ABSTRACT: A computer security incident response team (CSIRT) is a concrete organizational entity (i.e., one or more staff) that
More informationCyber Security in Europe
Cyber Security in Europe ENISA supporting the National Cyber Security Strategies An evaluation framework Liveri Dimitra Security and Resilience of Communication Networks Officer www.enisa.europa.eu Securing
More informationENISA & Cybersecurity. Dr. Udo Helmbrecht Executive Director, European Network & Information Security Agency (ENISA) 25 October 2010
ENISA & Cybersecurity Dr. Udo Helmbrecht Executive Director, European Network & Information Security Agency (ENISA) 25 October 2010 Agenda Some Definitions Some Statistics ENISA & Cybersecurity Conclusions
More informationUNCLASSIFIED. National and Cyber Security Branch. Presentation for Gridseccon. Quebec City, October 18-21
National and Cyber Security Branch Presentation for Gridseccon Quebec City, October 18-21 1 Public Safety Canada Departmental Structure 2 National and Cyber Security Branch National and Cyber Security
More informationCSIRT in general CSIRT Service Categories Reactive Services Proactive services Security Quality Management Services CSIRT. Brmlab, hackerspace Prague
Brmlab, hackerspace Prague Lightning talks, November 2016 in general in general WTF is an? in general WTF is an? Computer Security in general WTF is an? Computer Security Incident Response in general WTF
More informationPanel 1 National CSIRT Experience
Panel 1 National CSIRT Experience 2 nd Meeting of Government Cybersecurity Practitioners Sao Paulo, Brazil September 14-16, 2005 Andrew McAllister Senior Advisor, Cyber Security Public Safety and Emergency
More informationPackage of initiatives on Cybersecurity
Package of initiatives on Cybersecurity Presentation to Members of the IMCO Committee Claire Bury Deputy Director-General, DG CONNECT Brussels, 12 October 2017 Building EU Resilience to cyber attacks Creating
More informationDirective on Security of Network and Information Systems
European Commission - Fact Sheet Directive on Security of Network and Information Systems Brussels, 6 July 2016 Questions and Answers The European Parliament's plenary adopted today the Directive on Security
More informationThe Case for National CSIRTs
The Case for National CSIRTs ENOG 12 Yerevan 3-4 Oct 2016 What is a CERT (CSIRT)? A Computer Security Incident Response Team (CSIRT) is a service organization that is responsible for receiving, reviewing,
More informationCybersecurity in Asia-Pacific State of play, key issues for trade and e-commerce
Cybersecurity in Asia-Pacific State of play, key issues for trade and e-commerce 5-8 September 2017 Yogyakarta, Indonesia Sameer Sharma Senior Advisor ITU Digital Infrastructure for Connectivity SDGs Evolution
More informationDirective on security of network and information systems (NIS): State of Play
Directive on security of network and information systems (NIS): State of Play Svetlana Schuster Unit H1 Cybersecurity and Digital Privacy DG Communications Networks, Content and Technology, European Commission
More informationThe challenges of the NIS directive from the viewpoint of the Vienna Hospital Association
The challenges of the NIS directive from the viewpoint of the Vienna Hospital Association page 1 Cybersecurity Strategy Essential Points The norms, principles and values that the City of Vienna and the
More informationGlobal Security Advisor
Global Security Advisor Location: [North America] [United States] Category: Security *Preferred location: USA. Other locations will be considered globally where WVI is registered to operate. PURPOSE OF
More informationCENTER FOR SECURITY STUDIES
CENTER FOR SECURITY STUDIES Swiss Federal Institute of Technology (ETH Zurich) A Generic National Framework for Critical Information Infrastructure Protection 2nd WSIS Action Line C5 Meeting ITU Headquarters,
More informationRFC2350 TLP1: WHITE. Έκδοση National CSIRT-CY RFC2350
Έκδοση 1.2-2018.02.14 TLP1: WHITE 1 TLP Sources may use TLP: WHITE when information carries minimal or no foreseeable risk of misuse, in accordance with applicable rules and procedures for public release.
More informationIan Bryant (VEDEF WG Co-Chair) 26 th May 2006
!" Ian Bryant (VEDEF WG Co-Chair) 26 th May 2006 Summary of Situation Activity Since Last Meeting Discussion Summary of Situation Activity Since Last Meeting Discussion !"# Many TF-CSIRT members are engaged
More informationCOUNTERING IMPROVISED EXPLOSIVE DEVICES
COUNTERING IMPROVISED EXPLOSIVE DEVICES FEBRUARY 26, 2013 COUNTERING IMPROVISED EXPLOSIVE DEVICES Strengthening U.S. Policy Improvised explosive devices (IEDs) remain one of the most accessible weapons
More informationItalian government CERT: INITIAL RESULTS
Italian government CERT: INITIAL RESULTS ISCOM Conference on Network and Information Security: Political and Technical Challenges Gianluigi Moxedano GovCERT.it National Center for Informatics in Public
More informationCERT.LV activities, role in Latvia and globally. Baiba Kaskina, CERT.LV , Sofia, Bulgaria
CERT.LV activities, role in Latvia and globally Baiba Kaskina, CERT.LV 30.11.2016., Sofia, Bulgaria CERT.LV Overview CERT.LV Information Technology Security Incident Response Institution of the Republic
More informationA framework for community safety and resilience
11/21/08 1:01 PM Page 1 Red Cross Red Crescent support to the Millenium Development Goals Building community safety and resilience Millenium Development Goals Community safety and resilience Red Cross
More informationSecurity Director - VisionFund International
Security Director - VisionFund International Location: [Europe & the Middle East] [United Kingdom] Category: Security Job Type: Open-ended, Full-time *Preferred location: United Kingdom/Eastern Time Zone
More informationSecurity and Privacy Governance Program Guidelines
Security and Privacy Governance Program Guidelines Effective Security and Privacy Programs start with attention to Governance. Governance refers to the roles and responsibilities that are established by
More informationSwedish IT Incident Centre
Swedish IT Incident Centre Establishing a Government CERT from scratch the Swedish experience Establishment phase 2003 2004 CERTs in Europe Lessons Learned and Good Practices, Brussels 2005-12-13 Presentation
More informationStakeholders Analysis
Stakeholders Analysis Introduction National Stakeholders ISP citizens CNIIP Media National CIRT Academia ONG, Public And Private Institutions sectoral CSIRTs Law enforcement 2 2 CIRT ISP A specialized
More informationBrussels, 19 May 2011 COUNCIL THE EUROPEAN UNION 10299/11 TELECOM 71 DATAPROTECT 55 JAI 332 PROCIV 66. NOTE From : COREPER
COUNCIL OF THE EUROPEAN UNION Brussels, 19 May 2011 10299/11 TELECOM 71 DATAPROTECT 55 JAI 332 PROCIV 66 NOTE From : COREPER To: COUNCIL No Cion. prop.: 8548/11 TELECOM 40 DATAPROTECT 27 JAI 213 PROCIV38
More informationITU-ACMA Asia Pacific Regulators Roundtable July 2014
ITU-ACMA Asia Pacific Regulators Roundtable 2014 21-22 July 2014 Session 2: Evolution of the Regulator Addressing International Concerns Content Page Cyber Security Cross-border Data Flow Interoperability
More informationIT Governance Framework at KIT
[unofficial English version; authoritative is the German version] IT Governance Framework at KIT 1. Recent situation and principle objectives Digitalization increasingly influences our everyday life at
More informationNational Cyber Security Strategy - Qatar. Michael Lewis, Deputy Director
National Cyber Security Strategy - Qatar Michael Lewis, Deputy Director 2 Coordinating a National Approach to Cybersecurity ITU Pillars of Cybersecurity as a Reference Point providing the collected best
More informationThe Science and Technology Roadmap to Support the Implementation of the Sendai Framework for Disaster Risk Reduction
29 February 2016 The Science and Technology Roadmap to Support the Implementation of the Sendai Framework for Disaster Risk Reduction 2015-2030 The Sendai Framework for Disaster Risk Reduction 2015-2030
More information22nd TF-CSIRT Meeting, Porto
22 nd TF-CSIRT Meeting Building National CERT of the Czech Republic 20-21 September 2007 Porto Introduction Participants Andrea Kropáčová (CESNET-CERTS), know-how Robert Malý (NESS), start up, professional
More informationThe Republic of Korea. economic and social benefits. However, on account of its open, anonymous and borderless
The Republic of Korea Executive Summary Today, cyberspace is a new horizon with endless possibilities, offering unprecedented economic and social benefits. However, on account of its open, anonymous and
More informationNATIONAL CYBER SECURITY STRATEGY. - Version 2.0 -
NATIONAL CYBER SECURITY STRATEGY - Version 2.0 - CONTENTS SUMMARY... 3 1 INTRODUCTION... 4 2 GENERAL PRINCIPLES AND OBJECTIVES... 5 3 ACTION FRAMEWORK STRATEGIC OBJECTIVES... 6 3.1 Determining the stakeholders
More informationCritical Information Infrastructure Protection. Role of CIRTs and Cooperation at National Level
Critical Information Infrastructure Protection Role of CIRTs and Cooperation at National Level 1 Global Cybersecurity Agenda (GCA) GCA is designed for cooperation and efficiency, encouraging collaboration
More informationGovernment Resolution No of February 15, Resolution: Advancing National Regulation and Governmental Leadership in Cyber Security
Government Resolution No. 2443 of February 15, 2015 33 rd Government of Israel Benjamin Netanyahu Resolution: Advancing National Regulation and Governmental Leadership in Cyber Security It is hereby resolved:
More informationThe German IT Security Certification Scheme. Joachim Weber
The German IT Security Certification Scheme Joachim Weber The German IT Security Certification Scheme 1. The role of the BSI 2. The German IT Certificate Scheme 3. Certification procedures in detail 4.
More informationResolution adopted by the General Assembly on 21 December [on the report of the Second Committee (A/64/422/Add.3)]
United Nations A/RES/64/211 General Assembly Distr.: General 17 March 2010 Sixty-fourth session Agenda item 55 (c) Resolution adopted by the General Assembly on 21 December 2009 [on the report of the Second
More informationLocal Action for Building Resilience at Nations and Communities
Local Action for Building Resilience at Nations and Communities Yongkyun Kim Institute Coordinator UNISDR Northeast Asia Office and Global Education and Training Institute for DRR Incheon Sister Friendly
More informationDiscussion on MS contribution to the WP2018
Discussion on MS contribution to the WP2018, 30 January 2018 European Union Agency for Network and Information Security Possibilities for MS contribution to the WP2018 Expert Groups ENISA coordinates several
More informationCyber Security Beyond 2020
Paulo Empadinhas Steve Purser NLO meeting ENISA Athens 26/04/2017 European Union Agency for Network and Information Security Main findings ENISA s current tasks and product portfolio shall be retained.
More informationRFC 2350 YOROI-CSDC. Expectations for Computer Security Incident Response. Date 2018/03/26. Version 1.0
RFC 2350 YOROI-CSDC Expectations for Computer Security Incident Response Title RFC 2350 YOROI-CSDC Document Type Specification Date 2018/03/26 Version 1.0 Yoroi S.r.l. Parte del gruppo MAM www.yoroi.company
More informationCybersecurity governance in Europe. Sokratis K. Katsikas Systems Security Laboratory Dept. of Digital Systems University of Piraeus
Cybersecurity governance in Europe Sokratis K. Katsikas Systems Security Laboratory Dept. of Digital Systems University of Piraeus ska@unipi.gr Elements of a national cybersecurity strategy Set the vision,
More informationCo-operation against cybercrime CSIRTs LE private sector
Co-operation against cybercrime CSIRTs LE private sector Octopus Interface 2010 Kauto Huopio Sr. Infosec Advisor Finnish Communications Regulatory Authority CERT-FI Finnish national CSIRT authority { National
More informationRomania - Cyber Security Strategy. 6th IT STAR Workshop on Digital Security
Romania - Cyber Security Strategy 6th IT STAR Workshop on Digital Security 30 March 2012 Bratislava, Slovakia Florin VREJOIU Horia GLIGOR Programme Manager Member of the Board Association for Information
More informationSAINT PETERSBURG DECLARATION Building Confidence and Security in the Use of ICT to Promote Economic Growth and Prosperity
SAINT PETERSBURG DECLARATION Building Confidence and Security in the Use of ICT to Promote Economic Growth and Prosperity 1. We, APEC Ministers responsible for the Telecommunications and Information Industry,
More informationIMPACT Global Response Centre. Technical Note GLOBAL RESPONSE CENTRE
Technical Note GLOBAL RESPONSE CENTRE INTRODUCTION IMPACT s Global Response (GRC) acts as the foremost cyber threat resource centre for the global. It provides emergency response to facilitate identification
More informationCroatian National CERT ACDC project Darko Perhoc, Head of National CERT CISSP, CEH, CCNP Security R&S,CCDP
Croatian National CERT ACDC project Darko Perhoc, Head of National CERT CISSP, CEH, CCNP Security R&S,CCDP Croatian National CERT (HR-CERT) mission: Promoting and preserving information security of public
More informationISAO SO Product Outline
Draft Document Request For Comment ISAO SO 2016 v0.2 ISAO Standards Organization Dr. Greg White, Executive Director Rick Lipsey, Deputy Director May 2, 2016 Copyright 2016, ISAO SO (Information Sharing
More informationCOMMISSION RECOMMENDATION. of on Coordinated Response to Large Scale Cybersecurity Incidents and Crises
EUROPEAN COMMISSION Brussels, 13.9.2017 C(2017) 6100 final COMMISSION RECOMMENDATION of 13.9.2017 on Coordinated Response to Large Scale Cybersecurity Incidents and Crises EN EN COMMISSION RECOMMENDATION
More informationA Strategy for a secure Information Society Dialogue, Partnership and empowerment
A Strategy for a secure Information Society Dialogue, Partnership and empowerment Gerard.Galler@ec.europa.eu European Commission DG Information Society & Media Unit INFSO/A3: Internet; Network & Information
More informationINTERNATIONAL TELECOMMUNICATION UNION
INTERNATIONAL TELECOMMUNICATION UNION Telecommunication Development Bureau T E L E F A X Place des Nations Telephone +41 22 730 51 11 CH-1211 Geneva 20 Telefax Gr3: +41 22 733 72 56 Switzerland Gr4: +41
More informationCOUNCIL OF THE EUROPEAN UNION. Brussels, 24 May /13. Interinstitutional File: 2013/0027 (COD)
COUNCIL OF THE EUROPEAN UNION Brussels, 24 May 2013 Interinstitutional File: 2013/0027 (COD) 9745/13 TELECOM 125 DATAPROTECT 64 CYBER 10 MI 419 CODEC 1130 NOTE from: Presidency to: Delegations No. Cion
More informationSecurity and resilience in Information Society: the European approach
Security and resilience in Information Society: the European approach Andrea Servida Deputy Head of Unit European Commission DG INFSO-A3 Andrea.servida@ec.europa.eu What s s ahead: mobile ubiquitous environments
More informationRFD. for ICERT ( ) RESULTS-FRAMEWORK DOCUMENT. Department of Information Technology. Results-Framework Document (RFD) for CERT-In ( )
Results-Framework Document (RFD) for CERT-In (-) RFD RESULTS-FRAMEWORK DOCUMENT for ICERT Department of Information Technology (-) Page 1 of 13 Results-Framework Document (RFD) for CERT-In (-) SECTION
More informationSTRATEGIC PLAN. USF Emergency Management
2016-2020 STRATEGIC PLAN USF Emergency Management This page intentionally left blank. Organization Overview The Department of Emergency Management (EM) is a USF System-wide function based out of the Tampa
More informationAT FIRST VIEW C U R R I C U L U M V I T A E. Diplom-Betriebswirt (FH) Peter Konrad. Executive Partner Senior Consultant
Our Contact Details IT-SCAN GMBH c/o: DOCK3 Hafenstrasse 25-27 68159 Mannheim E: info@it-scan.de W: www.it-scan.de Nationalität Berufserfahrung C U R R I C U L U M V I T A E Diplom-Betriebswirt (FH) Peter
More informationSpecial Action Plan on Countermeasures to Cyber-terrorism of Critical Infrastructure (Provisional Translation)
Special Action Plan on Countermeasures to Cyber-terrorism of Critical Infrastructure (Provisional Translation) December 15, 2000 1. Goals of the Special Action Plan The goal of this action plan is to protect
More informationOverview. Objectives. Components. Information and Communication Technologies Sector Development Project. Project
Ministry of Communication Technologies Information and Communication Technologies Sector Development Project Video conference on from strategy to implementation: Lessons learned in World Bank funded ICT
More informationResolution adopted by the General Assembly. [on the report of the Second Committee (A/56/561/Add.2)]
United Nations A/RES/56/195 General Assembly Distr.: General 21 January 2002 Fifty-sixth session Agenda item 98 (b) Resolution adopted by the General Assembly [on the report of the Second Committee (A/56/561/Add.2)]
More informationCCISO Blueprint v1. EC-Council
CCISO Blueprint v1 EC-Council Categories Topics Covered Weightage 1. Governance (Policy, Legal, & Compliance) & Risk Management 1.1 Define, implement, manage and maintain an information security governance
More informationImplementation Strategy for Cybersecurity Workshop ITU 2016
Implementation Strategy for Cybersecurity Workshop ITU 2016 Council for Scientific and Industrial Research Joey Jansen van Vuuren Intricacies and interdependencies cyber policies must address potential
More informationWelcome to the CyberSecure My Business Webinar Series We will begin promptly at 2pm EDT All speakers will be muted until that time
TM Plan. Protect. Respond. Welcome to the CyberSecure My Business Webinar Series We will begin promptly at 2pm EDT All speakers will be muted until that time Registration is open for the April webinar:
More informationResolution adopted by the General Assembly on 14 December [without reference to a Main Committee (A/61/L.44 and Add.1)]
United Nations A/RES/61/132 General Assembly Distr.: General 1 March 2007 Sixty-first session Agenda item 69 (a) Resolution adopted by the General Assembly on 14 December 2006 [without reference to a Main
More informationUN General Assembly Resolution 68/243 GEORGIA. General appreciation of the issues of information security
UN General Assembly Resolution 68/243 GEORGIA General appreciation of the issues of information security Widely publicized cyber attacks and, to some expert opinions, cyber war - conducted against Georgia
More informationMember of the County or municipal emergency management organization
EMERGENCY OPERATIONS PLAN SUUPPORT ANNEX B PRIVATE-SECTOR COORDINATION Coordinating Agency: Cooperating Agencies: Chatham Emergency Management Agency All Introduction Purpose This annex describes the policies,
More informationNational Policy and Guiding Principles
National Policy and Guiding Principles National Policy, Principles, and Organization This section describes the national policy that shapes the National Strategy to Secure Cyberspace and the basic framework
More informationCONCLUSIONS OF THE WESTERN BALKANS DIGITAL SUMMIT APRIL, SKOPJE
CONCLUSIONS OF THE WESTERN BALKANS DIGITAL SUMMIT 2018 18-19 APRIL, SKOPJE CONCLUSIONS OF THE WESTERN BALKANS DIGITAL SUMMIT 2018 At the Trieste Western Balkans Summit, we stressed the importance of the
More informationValérie Andrianavaly European Commission DG INFSO-A3
Security and resilience in the Information Society: towards a CIIP policy in the EU Valérie Andrianavaly European Commission DG INFSO-A3 valerie.andrianavaly@ec.europa.eu Network and information security:
More informationTURNING STRATEGIES INTO ACTION DISASTER MANAGEMENT BUREAU STRATEGIC PLAN
DISASTER MANAGEMENT BUREAU STRATEGIC PLAN 2005-2006 PREFACE Historical statistics would suggest that Bangladesh is one of the most disaster prone countries in the world with the greatest negative consequences
More informationACTIVE SHOOTER RESPONSE CAPABILITY STATEMENT. Dynamiq - Active Shooter Response
ACTIVE SHOOTER RESPONSE CAPABILITY STATEMENT ACTIVE SHOOTER RESPONSE Responding to armed assault acts of terrorism and active shooter incidents Acts of terrorism and shootings in public places have become
More informationHOTEL RESILIENT Plan ahead stay ahead. With support from the German Government through
HOTEL RESILIENT Plan ahead stay ahead With support from the German Government through WHAT CAN GO WRONG WILL GO WRONG Murphy s Law More than 40% of hotels do not reopen after large disasters FEMA 2010
More informationSecurity. The total budget is CHF 0.8m (USD 0.8m and EUR 0.5m) (Click here to go directly to the summary budget of the plan).
Executive summary The unit will continue to focus on developing a security culture within the International Federation and our RC/RC Societies through security training and education, security assessments,
More informationEISAS Enhanced Roadmap 2012
[Deliverable November 2012] I About ENISA The European Network and Information Security Agency (ENISA) is a centre of network and information security expertise for the EU, its Member States, the private
More informationEUROPEAN ICT PROFESSIONAL ROLE PROFILES VERSION 2 CWA 16458:2018 LOGFILE
EUROPEAN ICT PROFESSIONAL ROLE PROFILES VERSION 2 CWA 16458:2018 LOGFILE Overview all ICT Profile changes in title, summary, mission and from version 1 to version 2 Versions Version 1 Version 2 Role Profile
More informationACAMS (Association of Certified AML Specialist)
ACAMS (Association of Certified AML Specialist) Founded in 2001 Largest international membership organisation dedicated to enhancing the knowledge, skills and expertise of AML/CTF and financial crime detection
More informationAbout Issues in Building the National Strategy for Cybersecurity in Vietnam
Vietnam Computer Emergency Response Team - VNCERT About Issues in Building the National Strategy for Cybersecurity in Vietnam Vu Quoc Khanh Director General Outline Internet abundance Security situation
More informationRegional Workshop on Frameworks for Cybersecurity and CIIP Feb 2008 Doha, Qatar
Regional Workshop on Frameworks for Cybersecurity and CIIP 18 21 Feb 2008 Doha, Qatar A National Cybersecurity Strategy aecert Roadmap Eng. Fatma Bazargan aecert Project Manager Technical Affairs Department
More informationThe latest version of this profile can be found on the location specified in 1.3
FORTHcert Profile according to RFC 2350 1. About this document 1.1 Date of Last Update This is version 1, published 2012/02/1. 1.2 Distribution List for Notifications The latest version of this profile
More informationItu regional workshop
Itu regional workshop "Key Aspects of Cybersecurity in the Context of Internet of Things (IoT) Natalia SPINU 18 September, 2017 Tashkent, Uzbekistan AGENDA 1. INTRODUCTI ON 2. Moldovan public policy on
More information300 Riverview Plaza Odysseus Marcopolus, Chief Operating Officer Trenton, NJ POLICY NO: SUPERSEDES: N/A VERSION: 1.0
P.O. Box 212 Philip D. Murphy, Governor 300 Riverview Plaza Odysseus Marcopolus, Chief Operating Officer Trenton, NJ 08625-0212 www.tech.nj.gov STATE OF NEW JERSEY TECHNOLOGY CIRCULAR Enterprise Information
More informationDepartment of Homeland Security Updates
American Association of State Highway and Transportation Officials Special Committee on Transportation Security and Emergency Management 2016 Critical Infrastructure Committee Joint Annual Meeting Department
More informationFundamentals of Cybersecurity/CIIP. Building Capacity: Using a National Strategy & Self-Assessment
Fundamentals of Cybersecurity/CIIP Building Capacity: Using a National Strategy & Self- Presented to: 2009 ITU Regional Cybersecurity Forum for Asia-Pacific Connecting the World Responsibly 23-25 25 September
More information13967/16 MK/mj 1 DG D 2B
Council of the European Union Brussels, 4 November 2016 (OR. en) 13967/16 'I/A' ITEM NOTE From: To: General Secretariat of the Council No. prev. doc.: 11911/3/16 REV 3 No. Cion doc.: 11013/16 Subject:
More informationASEAN REGIONAL COOPERATION ON DISASTER MANAGEMENT
ASEAN REGIONAL COOPERATION ON DISASTER MANAGEMENT Adelina Kamal, Head of Disaster Management & Humanitarian Assistance Division, ASEAN Socio Cultural Community Department, ASEAN Secretariat 11 th ASEAN
More informationSecuring Europe's Information Society
Securing Europe's Information Society Dr. Udo Helmbrecht Executive Director European Network and Information Security Agency 16 June 2010 FIRST AGM Miami 16/6/2010 1 Agenda ENISA overview Challenges EU
More informationThe cybersecurity platform for industrial small and medium-sized enterprises (SME) Andreas Harner, Head of
CERT@VDE The cybersecurity platform for industrial small and medium-sized enterprises (SME) Andreas Harner, Head of CERT@VDE What is a Computer Emergency Response Team (CERT)? A CERT (sometimes called
More informationHow to communicate with your government - Lessons from Japan -
How to communicate with your government - Lessons from Japan - Dr. Suguru Yamaguchi JPCERT/CC Japan Summary CSIRT can be a good liaison between government and industries. Cybersecurity is emerging in various
More informationEarthquake Preparedness
Ministry of State for Emergency Preparedness Emergency Management BC Earthquake Preparedness UBCM September 22, 2015 2014 OAG AUDIT CATASTROPHIC EARTHQUAKE AN OPPORTUNITY Build capacity Develop strategic
More informationData Protection System of Georgia. Nina Sarishvili Head of International Relations Department
Data Protection System of Georgia Nina Sarishvili Head of International Relations Department 14/12/2016 Legal Framework INTERNATIONAL INSTRUMENTS CoE 108 Convention AP on Supervisory Authorities and Trans-
More informationStatement for the Record
Statement for the Record of Seán P. McGurk Director, Control Systems Security Program National Cyber Security Division National Protection and Programs Directorate Department of Homeland Security Before
More informationStrengthening Disaster Readiness. Moving from capacity to capability
Strengthening Disaster Readiness Moving from capacity to capability Peter Scott-Bowden Senior Emergency Advisor Operations Department of Emergencies World Food Programme 21 September 2011 Page 1 21 September
More informationCentre for cybersecurity Belgium : Role, Missions et future capacities
Centre for cybersecurity Belgium : Role, Missions et future capacities NLO meeting 30/01/2018 Phédra Clouner Deputy Director CCB 01 CCB mission & services Page 2 Legal Basis R.D. 10/10/2014 Contribute
More informationNational Coordinator - DRR & Disaster Management
National Coordinator - DRR & Disaster Management Location: [Africa] [Kenya] [Nairobi] Category: Food Security & Livelihood Purpose of the Position: This position is responsible for coordinating and managing
More information