Ostend 24 September 2010

Transcription

1 Ostend 24 September 2010

2 CIMAS: Critical Infrastructures Management Application for Security Objectives CIMAS Project exhibition to establish strategic partnerships with companies to SEC SECURITY RESEARCH CALL (Topic: 2.5-1: Cyber attacks against critical infrastructures). Interested in the protective technologies to incorporation of compliance regulations and critical assets from different Critical Infraestructures Sectors.

3 Incorporation of compliance regulations and critical assets from different Critical Infrastructures Sectors in order to generate standard based automatic controls and technical measures. Global Management Modules for Regulatory Compliance, Risks, Vulnerabilities, and Service Continuity in order to minimize Threats and Disasters.

4 *SERSCIS: Semantically Enhanced Resilient and Secure Critical Infrastructure Services (

5 Information Collection: The CIMAS Framework will be supported by an Information Collection System under a structured and integrated model provided by SERSCIS (another FP7-Security European Project) Availability: The CIMAS framework shall address availability needs arisen from the system. Behaviour: The CIMAS framework will monitor the performance of services and control systems relying on SERSCIS.

6 Main expected milestones: Market research CIMAS Framework base Console & SERSCIS integration Regulation Module Risk Management Module Continuity Management Module Vulnerability Management Module TOTAL 3 months 4 months 3 months 5 months 3 months 4 months 5 months 30 months

7 Expected results: Compliance with Existing Regulatory Frameworks Critical Infrastructures Security Balanced Scorecard Detect and Minimize Critical Infrastructures Threats and Disasters : Theft or misuse of sensitive information. Terrorism and extortion. Denail of service: loss of availability of critical services Violation of legal compliance requirements. Public Health Risks Integration with the IT & IS Mgmt Systems within an interoperable and standard framework

8 150 professionals: Madrid, Asturias, Valencia and Cantabria Turnover: 7 million C 2 I 3 D: Centro de Conocimiento, Investigación, Ingeniería, Desarrollo e Innovación. Innovation, Development, Engineering, Research and Knowledge Center (ISO certified. Clients, providers, universities and technological centers collaboration) Certificates: ISO 9001, ISO , ISO 27001, ISO 20000*, CMMI Level 2

9 +15 years experience in Integral Security Information Security: Compliance (LOPD, LSSI/CE, SoX, Basel II) Standarization & Normalization (ISO 27001, BS 25999, ISO 20000, ISA 99, CMMI, ITIL) Security Management and Organization (Interim Management, Coaching, Outsourcing, Policies, Procedures) Technological Security: Architectures Design & Implementation, Ethical Hacking, Penetration Tests, Security Systems Industrial CyberSecurity, Control Systems, SCADA Authors of the 1st Workshop about Security in Control Systems and SCADA in Spain (I International Meeting CIIP, CNPIC) Critical Infrastructures Protection, CyberSecurity Plans Maximum Professional Solvence: CGEIT, CISM, CISA, CISSP, CEH, BS 7799/ISO27001 & BS LA, Manufacturers Certifications (NetAsq, Juniper, Sun, Oracle, Microsoft, Symantec, Optenet, )

10 Port Research & Development September

11 European Policies SPACE MARINE MARITIME COASTAL PORT TRANSPORT ENVIRONMENT SAFETY SECURITY

12 SECURITY R&D PROJECTS Year Project Program Description ATLANTIS ERDF Atlantic Arc VTS Requirements for the introduction of a Regional VTS to control vessels transporting Dangerous or Hazardous cargo in the Atlantic Arc area COST-330 COST-Transport 1995 Tele-informatic links between Ports Research Project aimed to analyse different telecom platforms between Ports and Port Communities WATERMAN 5 th Framework Programme GROWTH Thematic Network on VTMIS - Waterborne Traffic Management and Information Services to improve navigation safety ROSES Program ESA GMES Real Time Ocean Services for Environment and Security. Research project belonging to GMES Program from ESA European Space Agency Satellite surveying of oil spill and algae blooms

13 SECURITY R&D PROJECTS Year Project Program Description SAFETOW 6º PM Program GROWTH Strategic Aid For Escort and Salvage Tugs at Work. Research project to develop a Decision Support System for accidents of vessels MTCP 6º PM Program GROWTH Maritime Transport Coordination Platform : Research project to develop a knowledge database for maritime and port know-how accordingly EMSA guidelines MARCOAST Program ESA - GMES Maritime and Coastal Satellite Surveillance Research Project to support the operational project belonging to GMES Program from ESA European Space Agency Satellite surveying of European coasts MARNIS 6º PM Program GROWTH Maritime Navigation and Information Services Research Project to support the operational services of EMSA, the European Maritime Safety Agency. Port of Gijón will work on Port safety and security aspects.

14 SECURITY R&D PROJECTS Year Project Program Description EFFORTS 6º Framework Programme Research PORTIDS IMAPS DG-TREN Study INTERREG- 3 Atlantic Area SERSCIS 7º Framework Programme ICT & SEC Effective Operations in Ports. Research project to develop tool for analysis of port risks and the RAPORT platform to help decisions taking Ports Identification System Study for the Analysis and the Conceptual Development of an European Port Access Identification Card (EPAIC) Integrated Management of Industrial and Environmental Risks in Port cities, a cooperation project leaded by CUB from Brest, designed an integrated approach to manage industrial and environmental risks in port cities Maritime Transport Coordination Platform : Research project to develop a knowledge database for maritime and port know-how accordingly EMSA guidelines

15 Intermark Tecnologías Periodista Paco Ignacio Taibo, , Gijón - SPAIN Tel Samuel Linares IT & Security Services Director slinares@grupointermark.com Tel

16 Tel : Fax : Date : v

17 Contacts : gcapg@puertogijon.es apuebla@puertogijon.es hmoyano@puertogijon.es Tel : Fax : January Date : v-2.56