(E (EG-CERT) Ahmed Tharwat | Sharm El Sheikh | December 2017 - - PowerPoint PPT Presentation

e eg cert
SMART_READER_LITE
LIVE PREVIEW

(E (EG-CERT) Ahmed Tharwat | Sharm El Sheikh | December 2017 - - PowerPoint PPT Presentation

Oct 26, 2022 135 likes •294 views

Egyptian Computer Emergency Readiness Team (E (EG-CERT) Ahmed Tharwat | Sharm El Sheikh | December 2017 Outline EG-CERT EG-CERT Hierarchy Operational Framework Key Cybersecurity Threats Capacity Building International

slide-1
SLIDE 1

Egyptian Computer Emergency Readiness Team (E (EG-CERT)

Ahmed Tharwat | Sharm El Sheikh | December 2017

slide-2
SLIDE 2

2

Outline

  • EG-CERT
  • EG-CERT Hierarchy
  • Operational Framework
  • Key Cybersecurity Threats
  • Capacity Building
  • International Cooperation
  • Challenges

2

slide-3
SLIDE 3

3

EG-CERT

  • April 2009: EG-CERT Established.
  • Established with one Team.
  • July 2009: 24/7 Monitoring and incident response.
  • September 2009: Digital Forensic analysis service started.
  • April 2011: Malware analysis and reverse engineering.
  • March 2012: Full member in FIRST.
  • December 2012: Penetration testing service started.
  • November 2013: membership in OIC-CERT Steering Committee
slide-4
SLIDE 4

4

EG-CERT Hierarchy

Vice President Cybersecurity Executive manager

Incident Handling Director Incident Handling Dept. Penetration Testing Director Penetration Testing Dept. Forensics Analysis Director Forensics Analysis Dept. Malware Analysis & Reverse Engineering Director Malware Analysis & Reverse Engineering Dept.

slide-5
SLIDE 5

5

Operational Framework: EG-CERT EG-CERT currently has 24 full-time professionals and operates on a 24/7 basis. Expansion plans for EG-CERT have been approved by the board of the NTRA, and are being implemented. EG-CERT provides support to several entities in the ICT sector, the financial sector as well as the governmental sector EG-CERT provides both re-active as well as proactive services.

slide-6
SLIDE 6

6

Key Cybersecurity Threats

  • Cyber Wars
  • Distributed Denial of Service Attacks (DDOS)
  • Infrastructure Manipulation
  • Data Breaches and Theft
  • Espionage
  • Ransomwares
slide-7
SLIDE 7

7

Capacity Building

  • 179 professionals from 38 entities received advanced

cybersecurity certification from SANS.

  • Participating in international Cyber Drills:

– Asia Pacific - APCERT cyber drill (2012-2017) – Organization of Islamic Countries - OIC-CERT (2012-2017) – ITU/Impact Arab region cyber drill (2012-2015).

slide-8
SLIDE 8

8

International Cooperation

  • Egypt is a member of the United Nations Group of Government

Experts (UN GGE) on the Developments In The Field Of Information And Telecommunications.

  • Egypt has led the efforts to establish the ITU’s Council Working

Group for Child Online Protection (CWG-COP)

slide-9
SLIDE 9

9

International Cooperation

  • Signed cooperation agreements with:

– Cybersecurity Malaysia (MYCERT) – South Korean CERT – US-CERT – Uganda – Team Cymru – IMPACT – Indian CERT.

slide-10
SLIDE 10

10

International Cooperation

  • Has strong relationships with many CERTs in the Arab region:

– Omani CERT – Tunisian CERT – Saudi CERT – AE-CERT – Q-CERT

slide-11
SLIDE 11

11

International Cooperation

  • Hosted and Organized the 5th Regional Cybersecurity Summit

in cooperation with ITU-ARCC.

  • Hosted and Organized FIRST Regional Symposium for Arab and

African Regions in cooperation with FIRST.

slide-12
SLIDE 12

12

Egypt-Uganda Cybersecurity Relations

12

slide-13
SLIDE 13

13

Challenges

  • Building Trust.
  • Better awareness.
  • Better readiness, resilience and contingency plans.
  • Better Skills.
  • Legislations.
slide-14
SLIDE 14

Thank you

Ahmed Tharwat | Sharm El Sheikh | December 2017