ERCI cybersecurity seminar Guildford ERCI cybersecurity seminar Guildford

Similar documents
CEN and CENELEC Position Paper on the draft regulation ''Cybersecurity Act''

NIS Standardisation ENISA view

Joint FIEEC-ZVEI Position on Cybersecurity

Cybersecurity & Digital Privacy in the Energy sector

Package of initiatives on Cybersecurity

Security and resilience in Information Society: the European approach

Third public workshop of the Amsterdam Group and CODECS European Framework for C-ITS Deployment

ENISA EU Threat Landscape

cybersecurity in Europe Rossella Mattioli Secure Infrastructures and Services

EU policy on Network and Information Security & Critical Information Infrastructures Protection

European Standards- preparation, approval and role of CEN. Ashok Ganesh Deputy Director - Standards

European Cybersecurity PPP European Cyber Security Organisation - ECSO November 2016

Harmonisation of Digital Markets in the EaP. Vassilis Kopanas European Commission, DG CONNECT

Cyber Security in Europe

CONCLUSIONS OF THE WESTERN BALKANS DIGITAL SUMMIT APRIL, SKOPJE

Horizon 2020 Security

Shaping the Cyber Security R&D Agenda in Europe, Horizon 2020

cybersecurity in Europe Rossella Mattioli Secure Infrastructures and Services

Discussion on MS contribution to the WP2018

JOINT MOTION FOR A RESOLUTION

Introduction to the European Standardization System

KIC Added-value Manufacturing: Exploiting synergies and complementarities with EU policies and programmes

13967/16 MK/mj 1 DG D 2B

Brussels, 19 May 2011 COUNCIL THE EUROPEAN UNION 10299/11 TELECOM 71 DATAPROTECT 55 JAI 332 PROCIV 66. NOTE From : COREPER

MOTION FOR A RESOLUTION

European Union Agency for Network and Information Security

Cloud Computing Standards C-SIG Plenary Brussels, 15 February Luis C. Busquets Pérez DG CONNECT E2

The emerging EU certification framework: A role for ENISA Dr. Andreas Mitrakas Head of Unit EU Certification Framework Conference Brussels 01/03/18

Resilience, Deterrence and Defence: Building strong cybersecurity for the EU

European Cybersecurity PPP European Cyber Security Organisation - ECSO

Call for Expressions of Interest

DG CONNECT (Unit H5) Update on Data Centre Activities

EUROPEAN COMMISSION JOINT RESEARCH CENTRE. Information Note. JRC activities in the field of. Cybersecurity

ENISA And Standards Adri án Belmonte ETSI Security Week Event Sophia Antipolis (France) 22th June

Securing Europe's Information Society

Cyber Security Beyond 2020

European Cybersecurity cppp and ECSO. org.eu

A Strategy for a secure Information Society Dialogue, Partnership and empowerment

Directive on security of network and information systems (NIS): State of Play

COMESA CYBER SECURITY PROGRAM KHARTOUM, SUDAN

The Network and Information Security Directive - ENISA's contribution

Secure Societies Work Programme Call

DIGITIZING INDUSTRY, ICT STANDARDS TO

U.S. Japan Internet Economy Industry Forum Joint Statement October 2013 Keidanren The American Chamber of Commerce in Japan

Strategic Transport Research and Innovation Agenda - STRIA

Security Challenges with ITS : A law enforcement view

H2020 Opportunities in the Area of Security and Critical Infrastructure Protection

5972/17 GT/cb 1 DG G 3 C

ETNO Reflection Document on the EC Proposal for a Directive on Network and Information Security (NIS Directive)

H2020 WP Cybersecurity PPP topics

NIS-Directive and Smart Grids

Status of activities Joint Working Group on standards for Smart Grids in Europe

New cybersecurity landscape in the EU Sławek Górniak 9. CA-Day, Berlin, 28th November 2017

Horizon 2020 Information and Communication Technologies in WP

T&D EUROPE. The European Association for Transmission and Distribution Equipment and Services Industry. FEDET, 9 November 2016

COUNCIL OF THE EUROPEAN UNION. Brussels, 24 May /13. Interinstitutional File: 2013/0027 (COD)

ENISA s Position on the NIS Directive

Directive on Security of Network and Information Systems

EUROPEAN COMMISSION Enterprise Directorate-General

IPv6 Task Force - Phase II. Welcome

ehealth Ministerial Conference 2013 Dublin May 2013 Irish Presidency Declaration

The Role of ENISA in the Implementation of the NIS Directive Anna Sarri Officer in NIS CIP Workshop Vienna 19 th September 2017

Recent developments CEN and CENELEC

Cybersecurity Package

Future-Proof Security & Privacy in IoT

Securing Europe s IoT Devices and Services

Enhancing the security of CIIPs in Europe - ENISA s Approach Dimitra Liveri Network and Information Security Expert

Information sharing in the EU policy on NIS & CIIP. Andrea Servida European Commission DG INFSO-A3

Cybersecurity in the EU Steve Purser Head of Operational Departments, ENISA Regional Cybersecurity Forum Sofia, Bulgaria 29 th November 2016 European

HEALTH IN ECSO (European Cyber Security Organisation) 18 October 2017

Promoting Digital Economy in the Eastern Partnership. Vassilis Kopanas European Commission, DG CONNECT

Friedrich Smaxwil CEN President. CEN European Committee for Standardization

In Accountable IoT We Trust

The NIS Directive and Cybersecurity in

Between 1981 and 1983, I worked as a research assistant and for the following two years, I ran a Software Development Department.

COMMISSION STAFF WORKING DOCUMENT EXECUTIVE SUMMARY OF THE IMPACT ASSESSMENT. Accompanying the document

Big Data Value cppp Big Data Value Association Big Data Value ecosystem

The European Cloud Initiative and High Performance Computing (HPC) Teratec 2016

Horizontal / cross-sectoral standardization activities

Digital Platforms for 'Interoperable and smart homes and grids'

VdTÜV Statement on the Communication from the EU Commission A Digital Single Market Strategy for Europe

Smart Gas Grids. Manuel Sánchez, Ph.D. Team Leader Smart Grids Directorate General for Energy European Commission

Third public workshop of the Amsterdam Group and CODECS C-ITS Deployment in Europe: Common Security and Certificate Policy

ENISA S WORK ON ICS AND SMART GRID SECURITY

Benefits of Open Cross Border Data Flows

H2020 & THE FRENCH SECURITY RESEARCH

Standards to support digital transformation

WORK PROGRAMME 2015 INCLUDING MULTI-ANNUAL PLANNING

The European Policy on Critical Information Infrastructure Protection (CIIP) Andrea SERVIDA European Commission DG INFSO.A3

Cybersecurity in Asia-Pacific State of play, key issues for trade and e-commerce

Doug Couto Texas A&M Transportation Technology Conference 2017 College Station, Texas May 4, 2017

CEF e-invoicing. Presentation to the European Multi- Stakeholder Forum on e-invoicing. DIGIT Directorate-General for Informatics.

UK-led international standards for BIM

Incentives for IoT Security. White Paper. May Author: Dr. Cédric LEVY-BENCHETON, CEO

Regional and subregional approaches to the Digital Economy: Lessons from Asia-Pacific and Latin America

Secure Societies in 2015

Cybersecurity Strategy of the Republic of Cyprus

Workshop on security of personal data processing

Committee on the Internal Market and Consumer Protection

ENISA activities in ICT security certification Dr. Prokopios Drogkaris NIS Expert NLO Meeting Athens

Transcription:

Cybersecurity is a EU strategic priority DG CONNECT* > The Digital Single Market strategy aims to open up digital opportunities for people and business and enhance Europe's position as a world leader in the digital economy DG Growth** > industrial policy > digital transformation On 13 September 2017 the Commission adopted a cybersecurity package. The package builds upon existing instruments and presents new initiatives to further improve EU cyber resilience and response. *Directorate-General for Communications Networks, Content and Technology **Directorate-General for Internal Market, Industry, Entrepreneurship and SMEs

Cybersecurity and transports in the EU Extract from the MOTION FOR A EUROPEAN PARLIAMENT RESOLUTION on a European strategy on Cooperative Intelligent Transport Systems : 2 points on cybersecurity : 13. Points to the importance of high standards of security in preventing hacking and cyber-attacks, particularly in light of the critical nature of security of C-ITS communications; notes that cybersecurity is an essential challenge to be tackled as the transport system becomes more digitised and connected; urges the need to avoid any vulnerability or risk if a vehicle is hacked or subjected to a cyber-attack by means of the development of a common security and certificate policy for C-ITS deployment; 14. Underlines that equally high standards of security should be applied in all Member States and in any possible cooperation arrangements with third countries;

Cybersecurity is a global concern for many sectors Cybersecurity is a cross-cutting topic by nature. Any data processing is potentially affected. Initially supported by IT actors (IT security targeted at CISOs) progressively spilled over and covered all areas applications due to the increasing digitization of the industry and services : o Health, o Energy (smart grids,..), o Transportation o Smart cities, o Communication,... Proposal : we need to prepare together recommendations for ground transportation.

Existing initiatives on cybersecurity European level : Three ESOs (European standardization organization) are in charge of the CEN, CENELEC and ETSI standardization. They operate on mandate of the European Commission. o Example M530 mandate on privacy by design entrusted to JWG 8 of CEN / CENELEC with the support of ETSI o or CEN TC 391 "societal security and citizen protection o ETSI's Cybersecurity TC topics covered: the post quantum computing, security insurance by default, structured information sharing,... A light coordination structure the focus CSCG cyber Security Coordination group under CEN / CENELEC trusteeship with the participation of the DGs Connect and Grow as well as ENISA (European Security Agency).

ENISA activities

European cybersecurity act About this initiative : Proposal concerning all sectors Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL on ENISA, the "EU Cybersecurity Agency", and repealing Regulation (EU) 526/2013, and on Information and Communication Technology cybersecurity certification (''Cybersecurity Act'') Directorate-General for Communications Networks, Content and Technology Objectives : Creation & governance of a new certification scheme at EU level Enforcement of the new certification schemes at national level Introduction of new certification schemes for the industry

Existing initiatives on cybersecurity French level :

FIEEC-ZVEI proposals to the ECA A need for coordination at the European Level : Recognition of different players: (Platforms, Actors, ESOs*, Regulation) Better consistency (NIS, eids, GDPR, eprivacy) Coordinated action on standardization, certification and trust building CSPN light-weight label as European blueprint Promoting - the concept of industrial security and security-by-design - the role of SMEs the concept of information sharing tools across the EU - the international dimension of cybersecurity (global chain of trust ) - the need for more digital self-responsibility and liability in consumer markets Coordinate action on cloud assessement / certification at EU level ERNCIP** for certification schemes as an acceptable blueprint *ESO : European Security Organisation **ERNCIP : European Reference Network for Critical Infrastructure Protection

Normalisation is a key of global competitiveness Define mechanisms, protocols, processes, methods,... recognized largely at national, European or international level. Promote interoperability Protect intellectual property Avoid duplication of effort Leverage a broad and recognized network of experts A strategic issue: the qualification of products and services ISO/IEC 15408-1:2009 gives guidelines for the application of security targets (ST) and provides a description of the organization of components throughout the model. General information about the evaluation methodology is given in ISO/IEC 18045 and the scope of evaluation scheme is provided.

Creation of a ERCI task force on cybersecurity Proposal : creation of a European task force on railway cybersecurity to help our members (especially SME with the help of universities and academia), to anticipate, innovate and develop new solutions based on European standards and national complementarities. Interested clusters : o i-trans - FR o Rail Alliance - UK o Ditecfer - IT o Railgrup - ES o CNA - DE o Berlin Partner - DE o BTS - DE o Inno-Pro DK Kick-off meeting : February 2018 in Brussels or Paris

Creation of a ERCI task force on cybersecurity TO SECURE EuropeanTRANSPORTATION Who s in?

www.eurailclusters.com

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback