cyber incident management national and regional lessons
play

Cyber Incident Management -National and Regional Lessons Learned- - PowerPoint PPT Presentation

Sep 19, 2022 •174 likes •229 views

ARF Seminar on Operationalizing Cyber CBMs at Singapore 21 22 October 2015 Cyber Incident Management -National and Regional Lessons Learned- Masanori Sasaki Deputy Counsellor, NISC, Cabinet Secretariat, Japan Our organization NISC : N

  1. ARF Seminar on Operationalizing Cyber CBMs at Singapore 21 ‐ 22 October 2015 Cyber Incident Management -National and Regional Lessons Learned- Masanori Sasaki Deputy Counsellor, NISC, Cabinet Secretariat, Japan

  2. Our organization… NISC : N ational center of I ncident readiness and S trategy for C ybersecurity • 6 groups Strategy and Policy Planning • Various project teams International Strategy Deputy Director-General Comprehensive Measures for Government Agencies Director-General of NISC Critical Information Infrastructure Protection Deputy Director-General Integration and Coordination of Cybersecurity Information Cybersecurity Advisers Incident Investigation and Analysis 1

  3. Information what NISC needs… Strategic level  Information on law, policy, and strategy • International • Domestic  Situational Information: • Incident reports • Threat trends Collecting, processing, • Information on actors in cyberspace analyzing, and utilizing information for the • Best practices and measures on cybersecurity national cybersecurity  Technical information: • Malware • Vulnerability Operational level 2

  4. Information Channels  Domestic: • GSOC [Government Security Operation Coordination team] • Each government agency’s CSIRT • JPCERT/CC and other partners • Law enforcement agencies • Private sector  International: • Formal communication channels e.g. bilateral cyber-dialogues • Multilateral frameworks e.g. FIRST • Informal meetings and communications • poc@nisc.go.jp 3

  5. Incident management framework and information sharing… Each Ministry’s CSIRT  Situational awareness and analysis  Incident response Used effectively?  Report to decision makers GSOC [Government Security Operation Coordination team]  Training and exercise  Real-time network monitoring Warnings & notifications  Information sharing and cooperation  Malware analysis and information gathering GSOC  Prompt warnings on threats Monitoring Sensor Reports Ministry A PoC CSIRT CYMAT [CYber incident Mobile Assistance Team] Timely & precisely?  Members: government officials with advanced Cooperation among experiences and knowledge on cybersecurity CSIRTs Timely & effectively?  Be mobilized for serious impact cyber incidents GSOC GSOC Sensor that require government-wide response Sensor Request for assistance  Provides technical assistance to the Ministry C Ministry B government bodies for: PoC CSIRT PoC CSIRT • Accurate situational awareness & analysis Technical assistance Response • Incident response and damage control and advice • Recovery from incidents Technical • Recurrence prevention Assistance • Exercises and Trainings Collaboration, • Private sector information sharing • International partners, etc . Work practically? 4

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CYBER INCIDENT MANAGEMENT: NATIONAL AND REGIONAL LESSONS LEARNED HARME MOHAMED 21 OCTOBER 2015

CYBER INCIDENT MANAGEMENT: NATIONAL AND REGIONAL LESSONS LEARNED HARME MOHAMED 21 OCTOBER 2015

CYBER INCIDENT MANAGEMENT: NATIONAL AND REGIONAL LESSONS LEARNED HARME MOHAMED 21 OCTOBER 2015 MALAYSIAN COMMUNICATIONS AND MULTIMEDIA COMMISSION MCMC is both the developer and the regulator for the C&M industry, established based on:

253 views • 9 slides
Cyber Incident Management: National and Regional Lessons Learned ANGELA MARIE M. DE GRACIA State

Cyber Incident Management: National and Regional Lessons Learned ANGELA MARIE M. DE GRACIA State

Cyber Incident Management: National and Regional Lessons Learned ANGELA MARIE M. DE GRACIA State Counsel Office of Cybercrime CYBERSECURITY STRATEGIES 1. Understanding the Risk; 2. Controlling the Risk; 3. Organizing and Mobilizing for

304 views • 14 slides
Vancouver 2010 Olympics Lessons Learned: Cyber Robert Pitcher, Cyber Incident Handler

Vancouver 2010 Olympics Lessons Learned: Cyber Robert Pitcher, Cyber Incident Handler

Vancouver 2010 Olympics Lessons Learned: Cyber Robert Pitcher, Cyber Incident Handler robert.pitcher@ps.gc.ca Public Safety Canada FIRST Conference 15 June 2011 Agenda Canadian Cyber Incident Response Centre Roles and Responsibilities

408 views • 21 slides
National Incident Management System National Incident Management System and and National

National Incident Management System National Incident Management System and and National

National Incident Management System National Incident Management System and and National Response Plan National Response Plan Overview March 2006 HSPD-5: Management of Domestic Incidents HSPD-5 Objectives: Single comprehensive

463 views • 21 slides
National Incident Management System National Incident Management System and and National

National Incident Management System National Incident Management System and and National

National Incident Management System National Incident Management System and and National Response Plan National Response Plan Overview March 2006 HSPD-5: Management of Domestic Incidents HSPD-5 Objectives: Single comprehensive

196 views • 17 slides
Incident Management Kevin ODonnell, PhD Sartans with N-nitrosamine impurities - Lessons Learnt

Incident Management Kevin ODonnell, PhD Sartans with N-nitrosamine impurities - Lessons Learnt

Incident Management Kevin ODonnell, PhD Sartans with N-nitrosamine impurities - Lessons Learnt Exercise Interested Parties Meeting, EMA, 4 November 2019 Typical Examples How the incident was triggered and managed EMA & Rapid

348 views • 13 slides
National Unified Goal For Traffic Incident Management Working Together for Improved Safety,

National Unified Goal For Traffic Incident Management Working Together for Improved Safety,

Proposed National Unified Goal For Traffic Incident Management Working Together for Improved Safety, Clearance and Communications What is Traffic Incident Management? Traffic Incident Management TIM refers to the Procedures and

150 views • 12 slides
Incident Management Team COVID-19 Incident Briefing Thursday, August 20, 2020 Bill Bullock

Incident Management Team COVID-19 Incident Briefing Thursday, August 20, 2020 Bill Bullock

Incident Management Team COVID-19 Incident Briefing Thursday, August 20, 2020 Bill Bullock Carbon County Commissioner Dr. Bill George Carbon County Public Health Officer Agenda National/ Regional/Carbon County Update County Risk Map

352 views • 8 slides
GE Incident Response Insight Awareness Advantage Sean Mason Director, Incident Response

GE Incident Response Insight Awareness Advantage Sean Mason Director, Incident Response

GE Incident Response Insight Awareness Advantage Sean Mason Director, Incident Response Investing in new talent & capabilities Incident response Cyber intelligence Digital forensics Security architecture Identity management

609 views • 42 slides
Lessons from the 10/5/2015 Emergency Incident The bomb threat incident of October 5 was truly a

Lessons from the 10/5/2015 Emergency Incident The bomb threat incident of October 5 was truly a

Prepared by Curtis Sommerfeld, 10/9/2015 Lessons from the 10/5/2015 Emergency Incident The bomb threat incident of October 5 was truly a cruel hoax, placing both the college community and emergency responders in harms way , causing much

373 views • 4 slides
GEORGIA INCIDENT MANAGEMENT PROGRAMS FHWA TALKING TIM WEBINAR DECEMBER 18, 2019 AGENDA

GEORGIA INCIDENT MANAGEMENT PROGRAMS FHWA TALKING TIM WEBINAR DECEMBER 18, 2019 AGENDA

GEORGIA INCIDENT MANAGEMENT PROGRAMS FHWA TALKING TIM WEBINAR DECEMBER 18, 2019 AGENDA National Incident Response Week HERO 25 th Anniversary Traffic Incident Management Enhancement (TIME) Task Force Georgias Towing and

251 views • 7 slides
CERT Symposium: Cyber Security Incident Management for Health Information Exchanges June 26, 2013

CERT Symposium: Cyber Security Incident Management for Health Information Exchanges June 26, 2013

Pennsylvania eHealth Partnership Authority Pennsylvanias Journey for Health Information Exchange CERT Symposium: Cyber Security Incident Management for Health Information Exchanges June 26, 2013 Pittsburgh, PA The Journey to the Triple AI

916 views • 33 slides
Incident Response & Evidence Incident Response & Evidence Incident Response &

Incident Response & Evidence Incident Response & Evidence Incident Response &

Incident Response & Evidence Incident Response & Evidence Incident Response & Evidence Incident Response & Evidence Management Management Management Management CIPS Brandon Chapter November 28 2002 Dr. Marc Rogers PhD,

629 views • 27 slides
Incident Management Incident Management Making sure things go right when they inevitably go

Incident Management Incident Management Making sure things go right when they inevitably go

Incident Management Incident Management Making sure things go right when they inevitably go wrong. Gareth Eason, HEAnet for TF-NOC, Zrich, 2011-06-29 Agenda HEAnet background: What do we do? Why manage incidents? How does

587 views • 33 slides
Process-based cyber incident response Mr Jorge Silveira Executive Director of Information

Process-based cyber incident response Mr Jorge Silveira Executive Director of Information

Code Yellow - Cybersecurity Process-based cyber incident response Mr Jorge Silveira Executive Director of Information Management & Chief Information Officer Northeast Health Wangaratta @HISA_HIC #HIC18 Introduction about

340 views • 18 slides
Canadian Cyber Incident Response Centre (CCIRC) UNCLASSIFIED Cyber in the News 1

Canadian Cyber Incident Response Centre (CCIRC) UNCLASSIFIED Cyber in the News 1

UNCLASSIFIED Briefing to Critical Infrastructure Sector Organizations on the Canadian Cyber Incident Response Centre (CCIRC) UNCLASSIFIED Cyber in the News 1 UNCLASSIFIED Tactics, Techniques and Procedures These observed tactics,

674 views • 25 slides
0-Day Patch Exposing vendors (in)security performance BlackHat Europe 2008 Amsterdam Stefan

0-Day Patch Exposing vendors (in)security performance BlackHat Europe 2008 Amsterdam Stefan

BLACKHAT Europe 2008 0-Day Patch 0-Day Patch Exposing vendors (in)security performance BlackHat Europe 2008 Amsterdam Stefan Frei + Bernhard Tellenbach Communication Systems Group ETH Zurich Switzerland http://www.csg.ethz.ch

414 views • 17 slides
CSG Justice Center National non-profit, non-partisan membership association of state

CSG Justice Center National non-profit, non-partisan membership association of state

10/27/2011 OJACC 25 th Annual Conference th l f Reducing Recidivism Through Collaboration Council of State Governments Justice Center Marc Pelka August 15, 2011 CSG Justice Center

402 views • 19 slides
(DG) Procurement Presented by the Illinois Solar Association and Carbon Solutions Group Illinois

(DG) Procurement Presented by the Illinois Solar Association and Carbon Solutions Group Illinois

Illinois Distributed Generation (DG) Procurement Presented by the Illinois Solar Association and Carbon Solutions Group Illinois Procurements for 2015 Supplemental PV Procurement Two bid categories <25kW, 25kW-2MW ONLY for systems

427 views • 16 slides
SOUTH CAUCASUS PIPELINE EXPANSION PROJECT (SCPX) 2019 SOUTH CAUCASUS PIPELINE EXPANSION PROJECT

SOUTH CAUCASUS PIPELINE EXPANSION PROJECT (SCPX) 2019 SOUTH CAUCASUS PIPELINE EXPANSION PROJECT

Engineering for a Better Future SOUTH CAUCASUS PIPELINE EXPANSION PROJECT (SCPX) 2019 SOUTH CAUCASUS PIPELINE EXPANSION PROJECT (SCPX ) The existing 690 km South Caucasus Pipeline is 42 diameter and transports gas from the Sangachal Terminal

250 views • 11 slides
Extending the Charter: Addressing Vulnerability and Exploit Information Yurie Yurie I to I to

Extending the Charter: Addressing Vulnerability and Exploit Information Yurie Yurie I to I to

I ETF I NCH W orking Group Meeting 5 th August 2 0 0 4 , San Diego CA US Extending the Charter: Addressing Vulnerability and Exploit Information Yurie Yurie I to I to I an Bryant I an Bryant Liaison Manager Head, Capability Developm ent

389 views • 22 slides
EU - Network and Information Security (NIS) Directive George Michaelides Commissioner of

EU - Network and Information Security (NIS) Directive George Michaelides Commissioner of

EU - Network and Information Security (NIS) Directive George Michaelides Commissioner of Electronic Communications and Postal Regulation http://www.ocecpr.org.cy 22 nd November 2016 1 Overview Cybersecurity Facts European Cybersecurity

289 views • 18 slides
Operational Security in EGEE Romain Wartel, CERN IT EGEE Operational Security Coordination Team

Operational Security in EGEE Romain Wartel, CERN IT EGEE Operational Security Coordination Team

Enabling Grids for E-sciencE Operational Security in EGEE Romain Wartel, CERN IT EGEE Operational Security Coordination Team http://www.eu-egee.org/security/ International Symposium on Grid Computing (ISGC) 2008 Academia Sinica, Taipei, 7 - 11

362 views • 14 slides
French view on the NIS Diretcive transposition Cybersecurity Framework in France - ANSSI >

French view on the NIS Diretcive transposition Cybersecurity Framework in France - ANSSI >

French view on the NIS Diretcive transposition Cybersecurity Framework in France - ANSSI > The Agence Nationale de la Scurit des Systmes dInformation (ANSSI) was created on July 7 th 2009 by a decree (2009-834) of the Prime Minister,

341 views • 17 slides

More recommend