Implementing Cyber Standards for SMEs: A Commonwealth Approach

Similar documents
Promoting Cyber Standards for SMEs: A Commonwealth Approach. Shola Taylor Secretary-General, CTO

Commonwealth Telecommunications Organisation Proposal for IGF Open Forum 2017

Australian Government Cyber-security Activities in the Pacific

Over The Top (OTT) Debate: One Way Forward

Discussion on MS contribution to the WP2018

The need for developing a cyber security ecosystem of professionals

ITU-IMPACT. Regional Cybersecurity Forum - CLMV

CTO, 26/04/2013. B.P 6170 Yaoundé Tél : (+237) Internet :

Bradford J. Willke. 19 September 2007

GLobal Action on CYbercrime (GLACY) Assessing the Threat of Cybercrime in Mauritius

National Open Source Strategy

ENISA s Position on the NIS Directive

Overview. Objectives. Components. Information and Communication Technologies Sector Development Project. Project

INTRODUCTION OVERVIEW ON CYBERCRIME

About Issues in Building the National Strategy for Cybersecurity in Vietnam

The cost of cybercrime the benefits of cooperation

NIS Standardisation ENISA view

Establishing National Incident Response Capability for Viet Nam - VNCERT activities and challenges

Edition. // the digital future // CTO COUNCIL APPROVE PLANS FOR CHOGM cto.int/e-commonwealth

New Zealand National Cyber Security Centre Incident Summary

Japan s Cyber Diplomacy

Reducing Risk and Building Capacity

Dr. Emadeldin Helmy Cyber Risk & Resilience Bus. Continuity Exec. Director, NTRA. The African Internet Governance Forum - AfIGF Dec 2017, Egypt

Think Oslo 2018 Where Technology Meets Humanity. Oslo. Felicity March Cyber Resilience - Europe

Diana Korka Economic Affairs Officer, ICT Policy Section UNCTAD

Presented by: Njei Check Head, Audit Security Division, ANTIC

BROADBAND DEFINITION

The UK s National Cyber Security Strategy

Digital government toolkit

Outreach and Partnerships for Promoting and Facilitating Private Sector Emergency Preparedness

Being Strategic about Cybersecurity

Multi-stakeholder partnerships for bridging the. digital divide

MELANI: Information exchange a story of success

Regional Cyber security Forum for Africa and Arab States, Tunis, Tunisia 4 th -5 th June 2009

ENISA Cooperation in the EU / NIS Directive

Cyber Resilience. Think18. Felicity March IBM Corporation

ENISA EU Threat Landscape

Stakeholder feedback form

Thailand Digital Government Development Plan Digital Government Development Agency (Public Organization) (DGA)

INTERNATIONAL TELECOMMUNICATION UNION

The 10YFP Programme on Sustainable lifestyles and education

EU policy on Network and Information Security & Critical Information Infrastructures Protection

ENISA & Cybersecurity. Dr. Udo Helmbrecht Executive Director, European Network & Information Security Agency (ENISA) 25 October 2010

e-governance in Africa let s speed up the process! Economic Commission for Africa

Surabaya, 19 April 2013 Jane Drake-Brockman

COMESA CYBER SECURITY PROGRAM KHARTOUM, SUDAN

Itu regional workshop

Mobile Money Takes Centrestage at UWI s Fourth National Cyber Security Conference

National Cyber Security Strategy (NCS) Toolkit

EISAS Enhanced Roadmap 2012

CYBER SECURITY AND DATA PROTECTION Theme: Securing Businesses and Public Transactions. Regional Headquarters, The University of the West Indies, Mona

Birendra Kumar Mishra. Director General Department of Information Technology Ministry Of Science and Technology Government of Nepal

OAS Cybersecurity Capacity Building Efforts

Cybersecurity for ALL

Digital Service Management (DSM)

Valérie Andrianavaly European Commission DG INFSO-A3

Commonwealth Cyber Declaration

OCTOPUS CONFERENCE COOPERATION AGAINST CYBERCRIME Workshop 1: Policies, activities and initiatives on cybercrime of international organisations

Digital Service Management (DSM)

The Power of the SE4All Action Agenda and Investment Prospectus

Promoting Trade, Inclusiveness and Connectivity for Sustainable Development

COBIT 5 Assessor Certification Training Course - Brochure

Enhancing the security of CIIPs in Europe - ENISA s Approach Dimitra Liveri Network and Information Security Expert

Hannover Declaration

POSITION DESCRIPTION

Modernising the public sector through the cloud

Planning and Implementing ITIL in ICT Organisations

CENTER FOR SECURITY STUDIES

The NIS Directive and Cybersecurity in

Cesium Co. Ltd., Company Profile. Certification. Laboratory. Metrology Standards. When Performance Matters. Testing Quality

Critical Information Infrastructure Protection. Role of CIRTs and Cooperation at National Level

Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure

ITU-IMPACT Capacity Building for Least Developed & Developed Countries

Committed to connecting the world

Liberia ICT Policy

Cybersecurity Strategy of the Republic of Cyprus

IGF 2018 Workshop Proposals Pre-Evaluation Figures

The rise of major Adversaries is the most relevant trend in 2014, targeting Government and Critical Services

WRI BUILDING EFFICIENCY INITIATIVE BUILDING EFFICIENCY INITIATIVE, WRI ROSS CENTER FOR SUSTAINABLE CITIES

Dual use Actions at EU level in support of SMEs, clusters & regions

HEALTH IN ECSO (European Cyber Security Organisation) 18 October 2017

Disaster risk reduction in a changing climate

7 th Private Sector - Chief Regulatory Officers (CRO) Meeting. Bangkok, Thailand, November 13 th, 2016

Information sharing in the EU policy on NIS & CIIP. Andrea Servida European Commission DG INFSO-A3

Predstavenie štandardu ISO/IEC 27005

PacNOG-21. Migrating to IPv6 : Experiences from Asia-Pacific

Package of initiatives on Cybersecurity

INDUSTRY 4.0 Summit 2018

METHODOLOGY AND CRITERIA FOR THE CYBERSECURITY REPORTS

ITU Centre of the Czech Technical University in Prague

ICT and Disaster Risk Reduction Division ESCAP

Global Health Security Agenda Private Sector Roundtable mobilizing industry for action

INVL TECHNOLOGY results for 12 months of March 2018

Regional Initiative 5: Telecommunication/ICT policy and Regulation in the Asia-Pacific Region

The United Republic of Tanzania. Domestication of Sustainable Development Goals. Progress Report. March, 2017

Overview of ITU capacity building activities

Cyber Security and Protecting Critical Information Infrastructures

Workshop IT Star IT Security Professional Positioning and Monitoring: e-cfplus support

Pilot Program for Climate Resilience in Tajikistan. Coordination Mechanism

First Session of the Asia Pacific Information Superhighway Steering Committee, 1 2 November 2017, Dhaka, Bangladesh.

Transcription:

Implementing Cyber Standards for SMEs: A Commonwealth Approach Commonwealth Cybersecurity Forum 2017 BT Centre, London, UK 22-24 March 2017 Dr Martin Koyabe Manager, Technical Support & Consultancy Commonwealth Telecommunication Organisation (CTO)

Acknowledgement Botswana Cameroon Nigeria Jamaica Uganda

Considerations for developing an effective NCS Standards & Technologies Promote the use of Information Security (IS) Standards» ISO 2700x, COBIT, ITIL, Cyber Essentials Monitor compliance of IS standards» in public and private organisations Participate in IS standards development» at global forums such as the ITU etc Promote IS standards for procurement» especially for information technology assets/vendors Track and monitor new technologies & trends» especially tools used by hackers

Reality Check!! Potential targets for Cyber attacks Nearly 43% of attacks targets SMEs 60% of SMEs close after an Cyber attack most close with 6 months of an attack Most SMEs are concerned about data customer data is essential and critical

Cyber Essential Standard Motivation for implementing the standard More simple and affordable to implement» based on 5 key security controls, aligned to ISO 2700x Suited for Small-to-Medium Enterprises (SMEs)» SMEs contribute over 60% of the GDP in many countries Protects businesses from more common attacks» malware, viruses, data loss etc Enables SMEs to participate securely in the value chain» used as minimum procurement requirement by governments

Status of Cyber Essentials (CE) Implementation Cyber Standards Cyber standards CE Assessors Cyber Essentials Cyber Essentials Sensitization Workshop Selection Assessment Certification Pakistan Uganda Cameroon Botswana Bangladesh Nigeria Jamaica Planned for (Apr-Jun 2017) 6

Cyber Standards & CIIP Workshop (Oct 2016) Host Partner Participating Ministries, Departments & Agencies Number of Participants Ministry of Transport and Communications MoTC, DTPS, DIT, BDF, BIH, BOCRA, BOBS, E-Government, SME representative, and private sector > 62 Gaborone, Botswana Oct 2016 7

Cyber Standards & CIIP Workshop (Oct/Nov 2016) Host Partner Participating Ministries, Departments & Agencies Number of Participants Ministry of Posts and Telecommunications and ANTIC MINPOSTEL, TRB, ANTIC and Other Ministries in Cameroon > 60 Yaounde, Cameroon Oct/Nov 2016 8

Cyber Standards & CIIP Workshop (Nov 2016) Host Partner Participating Ministries, Departments & Agencies Number of Participants Ministry of Science, Energy & Technology E-Gov, Jamaica-CERT, OUR, Office of Prime Minister, Office CIO, USF, Bank, JDF and other private and public sector agencies > 70 Uganda Kingston, Jamaica Nov 2016 Fiji 9

A very encouraging story from Botswana Ms Gaongalelwe G.P. Mosweu Potential Cyber Essential Assessor» based in Gaborone, Botswana Owner Maze Meadow Consulting Ltd Involved in ICT advocacy in Botswana» active member of BIT Society, ICAAN and TLD Group in Botswana a.k.a Gao

The key question Sustainability Requires a sustainable business model assessors need to be incentivised (each country has 5 funded slots) Encourage supply & demand governments need encourage the demand for the standard in SMEs More awareness and outreach about the standard through local SME representatives & Standard Agencies» need to do more

Q & A Session Further Information Contact: Dr Martin Koyabe Email: m.koyabe@cto.int Tel: +44 (0) 208 600 3815 (Off) +44 (0) 791 871 2490 (Mob) 12

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback