Concept Note: GIDC. Feasibility Study(F/S) on Government Integrated Data Center (GIDC) for the Republic of Nicaragua

Transcription

1 Concept Note: GIDC 1. Title of Proposed Project Feasibility Study(F/S) on Government Integrated Data Center (GIDC) for the Republic of Nicaragua 2. Organization Nicaraguan Institute for Telecommunications and Post (TELCOR) 3. Project Background A Government Integrated Data Center (GIDC) is a core infrastructure element required to establish effective e-governance. GIDCs, as an exclusive government data center, offers efficient and effective integrated ICT resources including IT systems, infrastructure, integrated operations systems, and human capital as necessary to process electronic public administration services and functions. To carry out the 21 projects drawn from the e-government Master Plan for Nicaragua, it is essential that the Nicaraguan government resolve the issues arising from the implementation and operation of individual systems of each ministry, which leads to redundant investment in information systems, a lack of security measures and an inferior computing environment. Furthermore, it is crucial that the government establishes a GIDC to provide the foundation for reliable and sustainable e- Governance. Implementation and operation of the GIDC will contribute to the integration of necessary ICT resources of different ministries, which will effectively reduce the costs for the government in the long term. 4. Project Description The objective of the main project is to establish a scalable GIDC, which will set the foundation for Nicaragua as the leading countries for e-governance best practices in the region. As a first step, it is necessary to undertake the feasibility study (FS) regarding GIDC, which shall include current status analysis, detailed implementation plan, cost estimation, and relevant components. The estimated cost for each step for GIDC implementation is as follows; (1) Feasibility Study: $200,000 (2) Project Management Consulting(including monitoring and auditing): $1,000,000 (3) Construction & Implementation: $14,000, Priority of Project It is one of the top priority projects in the e-government master plan. We plan to implement the GIDC in the near future. 6. Expected Outcomes of Project

2 (1) Feasibility Study Consulting Report including As-Is status analysis, To-Be model, establishment and implementation plan (2) Financial Analysis to initiate main project 7. Expectations on Korean Experts (1) Experts or companies who have experiences in ICT and/or GIDC projects (2) Experts or companies who have experiences in ICT and/or International Cooperation and Development projects (3) Experienced on businesses in Central and South America with coordination of local consultants and regional experts who speaks Spanish 8. Others The Nicaraguan government is executing the National Human Development Plan (NHDP) for poverty reduction and national development. It deploys various infrastructure projects and social welfare programs to provide benefits to the poor for national socio-economic transformation. Through the national plan, the Nicaraguan government is going to utilize ICT for country modernization in the public administration, education and health sectors to increase quality of life for our citizens. One of the strategic pillars is the National Broadband Plan to increase accessibility and affordability of connectivity to those in the rural areas.

3 Concept Note: NicaCERT 1. Title of Proposed Project Feasibility Study (F/S) on CERT(Computer Emergency Response Team) for the Republic of Nicaragua 2. Organization Nicaraguan Institute for Telecommunications and Post (TELCOR) 3. Project Background Nicaragua expects to have a specific plan to implement a national CERT infrastructure and develop human and institutional capacity for CERT operation by benchmarking KR- CERT best practices and solutions. Nicaragua is aiming to implement a national CERT in conjunction with the national fiber optic network deployment to leverage synergies; reducing the cost of implementation, improving the protection of new critical infrastructure, improving response time to address incidents by enabling a real-time integrated management system for the benefit of the central and local government, private sector, and citizens. Ultimately, Nicaragua expects to establish an Integrated Security Operation Center for the integrated monitoring to protect the country s information systems and critical infrastructures. Through the findings of the E-Government Master Plan (M/P), successfully executed by NIPA in 2014, TELCOR became aware of the importance and necessity of a national CERT program. Additionally, in October 2014, TELCOR has visited KISA (Korea Internet Security Agency) to understand the best practices and lessons learned from Korea s CERT exerience. Hence, the Republic of Nicaragua shall take the necessary first steps to implement a national CERT with the support of the Korean government and its experts, which is also supported by the MOU framework signed between our two coutntries for ICT cooperation. 4. Project Description (1) Objective - The project will provide a feasibility study on the implementation of CERT in Nicaragua for crisis management in response to attacks on critical information infrastructures and advise on appropriate preventive and protective measures and countermeasures. (2) Scope - As-Is analysis on national cyber security policies, infrastructure and related status in Nicaragua - To-Be Model suggestion on CERT scheme, law and regulations - Implementation plan of CERT with roadmap, governance structure, hardware and software recommendations, training plan, financial analysis (CAPEX/OPEX) (3) Functions and Services

4 - Consulting on CERT feasibility and sustainability in Nicaragua - Survey on the As-Is status related to cyber security and prioritized requirements for security emergency response - Review on the best practices in Korea - Guides on prerequisites for national CERT operation such as resources, training, management and operation (4) Estimated Cost - Roughly around $200,000 for consulting activities by Korean and local experts for a feasibility study project on CERT in Nicaragua 5. Priority of Project Based on the Master Plan for the national information strategy and planning of Nicaragua established in 2014, a national Security Emergency Response (SER) capability is urgently required to prevent and address cyber-attacks on Nicaraguan critical infrastructures and mitigate the national ICT vulnerability. Also, the Nicaraguan government strongly needs a national CERT infrastructure to minimize risks and to reduce recovery time from cyberattacks when it does occur. Specific criminal legislation on cybercrime, regulation & compliance related to cyber security has been enacted recently, but Nicaragua does not have any official CIRT (Computer Incident Response Team), standards or frameworks on cyber security. There are academic institutions offering specialized training in the field of information security and computer forensic, but Nicaragua still needs experts/professionals certified by internationally recognized certification programs in cyber security. Also, Nicaragua needs to introduce R&D programs in order to operate and maintain a CERT program. 6. Expected Outcomes of Project 1. Feasibility Study including an As-Is analysis, To-Be model and implementation plan 2. Financial Analysis to initiate main project 3. Project Concept Paper preparation 7. Expectations on Korean Experts 1. Experts or companies who have experiences in ICT and/or Cyber Security consulting projects 2. Experts or companies who have experiences in ICT and/or International Cooperation and Development projects 3. Experienced on businesses in Central and South America with coordination of local consultants and regional experts who speaks Spanish 8. Others The Nicaraguan government is executing the National Human Development Plan (NHDP) for poverty reduction and national development. It deploys various infrastructure projects and social welfare programs to provide benefits to the poor for national socio-economic transformation. Through the national plan, the Nicaraguan government is going to utilize ICT for country modernization in the public administration, education and health sectors to increase quality of life for our citizens. One of the strategic pillars is the National Broadband Plan to increase

5 accessibility and affordability of connectivity to those in the rural areas. * Please fill-in the template accordingly within 3 pages