CERT-MU Computer Emergency Response Team of Mauritius National - - PowerPoint PPT Presentation

cert mu
SMART_READER_LITE
LIVE PREVIEW

CERT-MU Computer Emergency Response Team of Mauritius National - - PowerPoint PPT Presentation

Jan 05, 2023 447 likes •575 views

CERT-MU Computer Emergency Response Team of Mauritius National Cybersecurity Drills: An Effort Towards Effective Response to Cyber Threats Jennita Appanah Appayya Information Security Consultant CERT-MU| National Computer Board Cyber threat

slide-1
SLIDE 1

CERT-MU

Computer Emergency Response Team of Mauritius

National Cybersecurity Drills: An Effort Towards Effective Response to Cyber Threats

Jennita Appanah Appayya Information Security Consultant CERT-MU| National Computer Board

slide-2
SLIDE 2

2

www.cert-mu.org.mu | Hotline: 800 2378 | Email: contact@cert.ncb.mu | Incident Reporting: incident@cert.ncb.mu

CERT-MU

Cyber threat landscape

§ Change in the global cybersecurity challenges

  • From large-scale acts of international terrorism to ongoing civil

war spilling over into neighboring countries

  • Cyber security landscape is fluid.
  • One of the key questions facing policy-makers is how best to

prepare for a cyber incident: which resources, tools, expertise and systems are required to either prevent an incident occurring

  • r to minimize the impact of an incident should it occur?
  • A useful and productive method for identifying these elements is

by conducting cybersecurity exercises – simulated and controlled replication, observation and discussion of cyber incidents.

slide-3
SLIDE 3

3

www.cert-mu.org.mu | Hotline: 800 2378 | Email: contact@cert.ncb.mu | Incident Reporting: incident@cert.ncb.mu

CERT-MU

What is a Cybersecurity Drill?

§Assess organisations’ preparedness to resist cyber- threats and enable timely detection, response, mitigation and recovery actions in the event of cyber-attacks. §Drill simulations are carried

  • ut

in a controlled environment to train and assess

  • rganization’s

capabilities in responding to incidents and managing crisis. §Wake-up calls – increased in the number of reported incidents

slide-4
SLIDE 4

4

www.cert-mu.org.mu | Hotline: 800 2378 | Email: contact@cert.ncb.mu | Incident Reporting: incident@cert.ncb.mu

CERT-MU

Models of Cybersecurity Drills

slide-5
SLIDE 5

5

www.cert-mu.org.mu | Hotline: 800 2378 | Email: contact@cert.ncb.mu | Incident Reporting: incident@cert.ncb.mu

CERT-MU

§ Fictitious incident scenarios are developed. It consists of different incident types. § Teams are formed. § The drill facilitator explains and guides the team throughout the scenario analysis § Team(s) work out the solution and submit an advisory report. § Solutions are explained by the organising team.

Execution of Cybersecurity Drills

slide-6
SLIDE 6

6

www.cert-mu.org.mu | Hotline: 800 2378 | Email: contact@cert.ncb.mu | Incident Reporting: incident@cert.ncb.mu

CERT-MU

How Cybersecurity Drill helps in Threat Preparedness?

§ To gauge and improve the preparedness in the identification, response, prevention and resolution of incidents. § To demonstrate

  • rganizations

to evaluate the security posture and promote awareness of threats § To validate policies, plans and procedures, as well as with training, improving current tools and also to identify gaps and resources

slide-7
SLIDE 7

7

www.cert-mu.org.mu | Hotline: 800 2378 | Email: contact@cert.ncb.mu | Incident Reporting: incident@cert.ncb.mu

CERT-MU

Cybersecurity Drills as an active learning tool § The use of simulations and scenario-based activities as learning tools form a core part of what is known as “active learning”. § Encourage participants to use skills, techniques, tools and policy frameworks in a practical, simulated environment. § Participants actively engage with those situations, makes them better prepared to act if and when a situation occurs in real life.

slide-8
SLIDE 8

8

www.cert-mu.org.mu | Hotline: 800 2378 | Email: contact@cert.ncb.mu | Incident Reporting: incident@cert.ncb.mu

CERT-MU

Benefits of organizing Cyber Drills

  • 1. Find out the realistic picture of the organisation’s

cyber defense & incident response posture

  • 2. To understand the appropriate course of actions in

advance of a security breach.

  • 3. Helps to identify ‘Indicators of Compromise’
  • 4. Testing of the incident detection and response plan
slide-9
SLIDE 9

9

www.cert-mu.org.mu | Hotline: 800 2378 | Email: contact@cert.ncb.mu | Incident Reporting: incident@cert.ncb.mu

CERT-MU

Cyber Drills Conducted by CERT-MU

§ Regional ITU Alert Cybersecurity Drill for Africa in April 2016 ( 20 African countries participated) § ITU Top Management Drill in March 2018 § SADC Cybersecurity Drill in September 2018 (15 SADC countries participated)

slide-10
SLIDE 10

10

www.cert-mu.org.mu | Hotline: 800 2378 | Email: contact@cert.ncb.mu | Incident Reporting: incident@cert.ncb.mu

CERT-MU

National Cyber Security Drill for the CIIs § Will be held from 25-28 June 2019 § Targeted CIIs – Financial sector and Civil Aviation § Objective – to assess the preparedness to resist cyber threats, enable timely detection, response, and mitigation and recovery actions in the event of cyber- attacks. § Cybersecurity Drill model – mixed (table top, full simulations)

slide-11
SLIDE 11

Thank Y Thank You

11

CERT-MU

Computer Emergency Response Team of Mauritius (CERT-MU) Tel: 210 55 20 | Hotline: 800 2378 General Enquiry: contact@cert.ncb.mu Subscribe to Mail List: subscribe@cert.ncb.mu Incident Reporting: incident@cert.ncb.mu Vulnerability Reporting: vulnerability@cert.ncb.mu Cybersecurity Portal: http://cybersecurity.ncb.mu Website: www.cert-mu.org.mu

CONTACT US