CYBERSECURITY Situational awareness Franois Thill, Director - - PowerPoint PPT Presentation

▶

Mar 07, 2024 205 likes •427 views

CYBERSECURITY Situational awareness Franois Thill, Director Cybersecurity, Ministry of the economy Agenda The actual situation Strategy of the ministry Risk management a common language Some good practice examples 2 The

SLIDE 1

CYBERSECURITY

Situational awareness

François Thill, Director Cybersecurity, Ministry of the economy

SLIDE 2

Agenda

The actual situation
Strategy of the ministry
Risk management – a common language
Some good practice examples

SLIDE 3

The actual situation

… threats are mature – we are too, aren‘t we?

SLIDE 4

Convergence

Towards a „monoculture“ of systems
Everything is connected

Convergence of technologies

http://www.geneticliteracyproject.org

SLIDE 5

Vulnerabilities

„Zero-Day“
Human vulnerabilities (I love you)

Vulnerabilities

Photos by Justin Baeder and Ricardo Martins

SLIDE 6

Development of the threat landscape (LU)

Threat actors are mature, highly skilled, with deep pockets

55% crime
40% espionage
5% activism

Michael Surran : http://commons.wikimedia.org/wiki/File:Boy_with_Commodore_Vic_20_%281984%29.jpg

SLIDE 7

Subcontractors

Service quality of subcontractors (who will you call)

Subcontractors

Jordy Meow: Gunkanjima. A view from the school.

SLIDE 8

It is not an individual challenge

Stop fighting alone – it is a societal challenge!

We need skills
We need to reduce costs and complexity
We need to work together and share

Rootology: Rowboat with oars and two passengers.

SLIDE 9

Strategy of the ministry

… Security for all, together !

SLIDE 10

Photo: Alexandre Dulaunoy

Democratization of security
Manage risks
Identify synergies
mutualize
cooperate
Reduction of compliance efforts

Strategy of the ministry

SLIDE 11

Risk management makes it possible

Principle of proportionality and necessity

SLIDE 12

Deliver reliable results

Risik management must

SLIDE 13

Deliver comparable results

Photo: Ionutzmovie

Risik management must

SLIDE 14

Be repeatable

Risik management must

SLIDE 15

Risk Management – the common language

Definition of scope Definition of risk appetite Definition of primary assets and criticality Identification of secondary assets Identification of asset’s vulnerabilities Identification of threats exploiting asset’s vulns Estimation and evaluation of risk Risk reduction, avoidance, extern., acceptance Risk = Impact x Threat x Vulnerability

SLIDE 16

Good practice

CASES

: Risk Management

CIRCL

: MISP & AIL

: Room 42 and so much more

SLIDE 17

Good practice - CASES

Risk management based upon fobjective metrics
Creation of comparable results

SLIDE 18

Good practice - CIRCL

MISP – Malware Information Sharing Platform

SLIDE 19

Good practice - CIRCL

AIL – Analysis of Information Leaks

SLIDE 20

Good practice – C3

Room 42

SLIDE 21

Thank you - François Thill

www.securitymadein.lu
www.cases.lu
www.circl.lu
https://monarc.lu
CIRCL

CYBERSECURITY

Situational awareness

Agenda

The actual situation

… threats are mature – we are too, aren‘t we?

Convergence

Convergence of technologies

Vulnerabilities

Vulnerabilities

Development of the threat landscape (LU)

Threat actors are mature, highly skilled, with deep pockets

Subcontractors

Subcontractors

It is not an individual challenge

Stop fighting alone – it is a societal challenge!

Strategy of the ministry

… Security for all, together !

Strategy of the ministry

Risk management makes it possible

Principle of proportionality and necessity

Deliver reliable results

Risik management must

Deliver comparable results

Risik management must

Be repeatable

Risik management must

Risk Management – the common language

Good practice

: Risk Management

: MISP & AIL

: Room 42 and so much more

Good practice - CASES

Good practice - CIRCL

Good practice - CIRCL

Good practice – C3

Room 42

Thank you - François Thill

: MISP & AIL

: Room 42 und soviel mehr