national cyber security strategy 2016
play

National Cyber Security Strategy 2016 26th of April 2017, Athens - PowerPoint PPT Presentation

Oct 07, 2023 •318 likes •464 views

National Cyber Security Strategy 2016 26th of April 2017, Athens Samuel Rothenpieler, International Relations Advisor, Federal Offjce for Information Security (BSI) Mission Statement of the German Federal Offjce for Information Security (BSI)

  1. National Cyber Security Strategy 2016 26th of April 2017, Athens Samuel Rothenpieler, International Relations Advisor, Federal Offjce for Information Security (BSI)

  2. Mission Statement of the German Federal Offjce for Information Security (BSI) The BSI as the n ational cyber security authority The BSI as the n ational cyber security authority shapes information security in digitisation shapes information security in digitisation through through prevention, detection and reaction prevention, detection and reaction for for government, business and society ! government, business and society ! Samuel Rothenpieler | April.2017 | Silde 2

  3. Policy Framework 2011 Cyber Security Strategy for Germany 2016 Federal Ministry Infor ormation on Information for Economic Securi urity Affairs & Energy Security Federal Ministry of BSI National National Transport & Digital Federal Ministry e-Government e-Government Infrastructure of the Interior Strategy (2010) Strategy (2010) Samuel Rothenpieler | April.2017 | Slide 3

  4. German CSS 2016 – Guiding principles (1/2) Cyber-Sicherheitsstrategie The ability to act and sovereignty of Germany needs to be für Deutschland ● 2016 maintained in the age of digitisation. Future-oriented cyber security policy enables ● to use the potentials and chances of digitisation being in the – public interest, to control the interrelated risks. – Samuel Rothenpieler | April.2017 | Slide 4

  5. German CSS 2016 – Guiding principles (2/2) ● Strategic framework for all activities of the Federal Government w.r.t. cyber secruity ● Collaboration between state, economy, science and society ● Collaboration between Bund-Länder ● Close European and international coordination of policies/measures due to cross-border effects and interdependencies Samuel Rothenpieler | April.2017 | Slide 5

  6. German CSS 2016 - Fields of Actions 4. Active positioning of GE in 1. Safe and self-determined European and international action in a digitized Cyber-Sicherheitsstrategie Cyber Security policy discussion environment 1. Sicheres und selbstbestimmtes für Deutschland 2016 Handeln in einer digitalisierten Umgebung 2. Gemeinsamer Auftrag von Staat und Wirtschaft 30 measures to improve CS 3. Leistungsfähige und nachhaltige gesamtgesellschaftliche Cyber- Sicherheitsarchitektur 4. Aktive Positionierung Deutsch- 3. Powerful and sustainable 2. Joint effort of lands in der europäischen und in- Cyber Security architecture government and ternationalen Cyber-Sicherheits- at national level industry politik Samuel Rothenpieler | April.2017 | Silde 6

  7. Action fjeld 1: Safe and self-determined action in a digitized environment a) Promoting digital literacy among all users, awareness raising b) Creating conditions for secure electronic communication and web services c) Secure e-Idendities Cyber-Sicherheitsstrategie für Deutschland 2016 d) Strengthening certifjcation and approval – introduction of an IT security „quality label“ e) Make the digitization process secure f) Promoting IT security research Samuel Rothenpieler | April.2017 | Silde 7

  8. Action fjeld 2: Joint effort of government and economy a) Securing Critical Infrastructures (IT security law, est. 2015) b) Protecting businesses in Germany Cyber-Sicherheitsstrategie c) Strengthening the domestic IT security industry für Deutschland 2016 d) Cooperating with providers e) Involving IT security service providers f) Creating a platform for trustful information exchange Samuel Rothenpieler | April.2017 | Silde 8

  9. Action fjeld 3: Powerful and sustainable CS architecture at national level a) Further development of the National Cyber Response Centre b) Strengthening of on-site analysis and response capacities c) Increasing law enforcement in cyber space Cyber-Sicherheitsstrategie für Deutschland d) Effectively fjghting cyber espionage and cyber sabotage 2016 e) Early warning system against cyber attacks from abroad f) Foundation of the central offjce for IT (ZITiS) g) Strengthening the defence dimension of cyber security h) Strengthening the CERT structures in Germany i) Protecting the Federal Administration j) Close cooperation between federal and state level (Bund-Länder) k) Making use of resources, HR: recruitment & development Samuel Rothenpieler | April.2017 | Silde 9

  10. In progress (1/2): Foundation of a central offjce for IT (ZITiS) •. Encryption is a central issue of our time („The Crypto Debate“) → relevant in terrorist cases, criminal offences and prosecution •. New government organisation •. During 2017 it will be est. around Munich → up to 400 staff •. Central service provider to security agencies, without operational mandate •. Tasks Digital forensics – Telecommunication surveillance – Crypto analysis – Big data analysis and fjght against crimes, counter espionage – R&D of methods, products, tools and strategies for security – agencies Samuel Rothenpieler | April.2017 | Silde 10

  11. In progress (2/2): Creation of MIRTs at BSI •. Inspired by hack on the German Bundestag → to create capacities to quickly respond to ongoing threats with clear provisions/responsibilities → on demand/mandatory •. MIRT – Mobile incident response teams •. Capacities for reaction and analysis on request (federal institutions but also critical infrastructures, if pub. interest) •. Up to 67 staff •. Coordinated by National Cyber Response Center •. „Cyber-Feuerwehr“ → involve industry actors as pendants •. QRF + MCT at Federal Criminal Police and domestic intelligence service Samuel Rothenpieler | April.2017 | Silde 11

  12. Action fjeld 4: Active positioning of Germany in European and international CS policy discussion a) Actively shaping an effective European CS policy b) Enhancing the NATO Cyber Defence Policy Cyber-Sicherheitsstrategie für Deutschland 2016 c) Playing an active part in shaping CS internationally d) Bilateral and regional support & cooperation for cyber capacity building e) Strenghtening international law enforcement Samuel Rothenpieler | April.2017 | Silde 12

  13. Highlights & impacts on BSI •. National Cyber Response Center will be further developed to play a role in cyber crises situations •. More active role for the national Cyber Security Council •. Implementation of MIRTs – Mobile Incident Response Teams (MIRTs) To be more supportive to government, but also operators of essential services – More „powers“ and competences to BSI – •. Creation of an IT Security Label – make IT security more transparent to the user •. Use of cryptotechniques should be supported •. Detection: sensor systems for detecting anomalies in provider networks •. Defense: Cooperation platform for state and economy Samuel Rothenpieler | April.2017 | Silde 13

  14. Thank you ! Questions ? Contact Mr. Samuel ROTHENPIELER International Relations samuel.rothenpieler@bsi.bund.de Bundesamt für Sicherheit in der Informationstechnik (BSI) Godesberger Allee 185-189 53175 Bonn www.bsi.bund.de Samuel Rothenpieler | April.2017 | Slide 14

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

ICSS2015: International Cyber Security Strategy Congress: Cyber Security and Forensic Readiness* *

ICSS2015: International Cyber Security Strategy Congress: Cyber Security and Forensic Readiness* *

ICSS2015: International Cyber Security Strategy Congress: Cyber Security and Forensic Readiness* * Preliminary programme, subject to revision/update status 16 December 2014 4 February 2015 Day 1: Cyber Security Readiness Registration KU

306 views • 4 slides
Cyber security Tiered approach to cyber security preparedness in water National Sector

Cyber security Tiered approach to cyber security preparedness in water National Sector

Cyber security Tiered approach to cyber security preparedness in water National Sector What I am Company utilities in the UK going to Water UK good practice cover NIS Directive Dr Jim Marshall, Senior Policy Advisor,

231 views • 4 slides
Homeland Security Perspectives: Cyber Security Partnerships and Measurement Activities Bradford

Homeland Security Perspectives: Cyber Security Partnerships and Measurement Activities Bradford

16 Oct 2012 Homeland Security Perspectives: Cyber Security Partnerships and Measurement Activities Bradford Willke Cyber Security Advisor, MidAtlantic Region National Cyber Security Division (NCSD) Office of Cybersecurity and Communications

443 views • 20 slides
Review Process A. DAVID MCKINNON, PH.D. Cyber Security Group, National Security Directorate

Review Process A. DAVID MCKINNON, PH.D. Cyber Security Group, National Security Directorate

SGIG Cyber Security Program Review Process A. DAVID MCKINNON, PH.D. Cyber Security Group, National Security Directorate TCIPG Industry Workshop 2014 November 14, 2014 PNNL-SA-106570 1 SGIG Cyber Security Program Overview Smart Grid

675 views • 10 slides
Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework Reporting Objectives Executive Summary Information Assess Current Cyber Security Posture Measure Progress Toward Improvement Assess

634 views • 5 slides
A Holistic Approach to Cyber Security Reduce the gap between your tools and your strategy. July

A Holistic Approach to Cyber Security Reduce the gap between your tools and your strategy. July

A Holistic Approach to Cyber Security Reduce the gap between your tools and your strategy. July 23,2019 Todays Presenters - A Holistic Approach to Cyber Security Frank Yako Steve Roesing CIO, Director of Strategic Initiatives, ASMGi

310 views • 27 slides
On Cyber-Peace Towards an International Strategy of Cyber-Security Stefan Schumacher Magdeburger

On Cyber-Peace Towards an International Strategy of Cyber-Security Stefan Schumacher Magdeburger

On Cyber-Peace Towards an International Strategy of Cyber-Security Stefan Schumacher Magdeburger Institut f ur Sicherheitsforschung DeepSec In Depth Security Conference Stefan Schumacher (MIS) On Cyber-Peace DeepSec 1 / 19 Uber Mich

539 views • 27 slides
Cyber Security February - 2016 Agenda Overview of Cyber Crime The top cyber threats to UK

Cyber Security February - 2016 Agenda Overview of Cyber Crime The top cyber threats to UK

Cyber Security February - 2016 Agenda Overview of Cyber Crime The top cyber threats to UK businesses and how to remain safe What help is available Further reading Setting the scene 21.2bn The cost of fraud to the

304 views • 19 slides
2018 Legislative Ag Chairs Summit Cyber Security Geoff Jenista, CISSP Cyber Security Advisor,

2018 Legislative Ag Chairs Summit Cyber Security Geoff Jenista, CISSP Cyber Security Advisor,

2018 Legislative Ag Chairs Summit Cyber Security Geoff Jenista, CISSP Cyber Security Advisor, Region VII Office of Cybersecurity and Communications (CS&C) National Protection and Programs Directorate (NPPD) FOUO / UNCLASS Cyber Security

333 views • 12 slides
Demystifying Cyber Insurance European Legal Security Forum 2016 12 th July 2016 Agenda The

Demystifying Cyber Insurance European Legal Security Forum 2016 12 th July 2016 Agenda The

Demystifying Cyber Insurance European Legal Security Forum 2016 12 th July 2016 Agenda The Evolution of Cyber Insurance Is Cyber Risk Already Insured? Cyber And Data Protection Is Not Just An IT Issue Case Study Cyber Risk Stakeholders The

1.03k views • 8 slides
Protecting UK Critical National Infrastructure from Cyber Attack Kevin T National Cyber Security

Protecting UK Critical National Infrastructure from Cyber Attack Kevin T National Cyber Security

Protecting UK Critical National Infrastructure from Cyber Attack Kevin T National Cyber Security Centre (NCSC) This information is exempt under the Freedom of Information Act 2000 (FOIA) and may be exempt under other UK information legislation.

197 views • 8 slides
What is Our Greatest Cyber-Security Threat? OT vulnerability explained and national conversation

What is Our Greatest Cyber-Security Threat? OT vulnerability explained and national conversation

What is Our Greatest Cyber-Security Threat? OT vulnerability explained and national conversation about security and privacy urged at ASU Biodesign presentation Where is the U.S. most vulnerable to cyber-security attack? And, what is the greatest

80 views • 4 slides
Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial

Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial

ABB MINING USER CONFERENCE, MAY 02-05, 2017 Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial Automation Division Agenda Why worry about cyber security? ABBs approach to cyber security Cyber security

1.07k views • 39 slides
Cyber-Physical System Security Alia Long Advanced Research in Cyber Systems (ARCS) Los Alamos

Cyber-Physical System Security Alia Long Advanced Research in Cyber Systems (ARCS) Los Alamos

Cyber-Physical System Security Alia Long Advanced Research in Cyber Systems (ARCS) Los Alamos National Laboratory LA-UR-17-27644 Operated by Los Alamos National Security, LLC for the U.S. Department of Energy's NNSA A Cyber-Physical Model

837 views • 7 slides
Web Security Cyber Security Lab Spring '10 04/15/10 Cyber Security Lab 1 Outline Web

Web Security Cyber Security Lab Spring '10 04/15/10 Cyber Security Lab 1 Outline Web

Web Security Cyber Security Lab Spring '10 04/15/10 Cyber Security Lab 1 Outline Web application weaknesses XSS AJAX weaknesses SQL Injection Attacks (Slides from Lars Olson)

588 views • 41 slides
Cyber Security and Smart Infrastructure: Research Dr. Stacy Prowell Chief Cyber Security

Cyber Security and Smart Infrastructure: Research Dr. Stacy Prowell Chief Cyber Security

Cyber Security and Smart Infrastructure: Research Dr. Stacy Prowell Chief Cyber Security Research Scientist Oak Ridge National Laboratory Main Points Information Sharing Enable discovering and sharing information about real threats to

216 views • 6 slides
SELIC CORP OPPORTUNITY DAY QUARTER 3/2018 DATE: December 18, 2018 Selic Corp Public Company

SELIC CORP OPPORTUNITY DAY QUARTER 3/2018 DATE: December 18, 2018 Selic Corp Public Company

SELIC CORP OPPORTUNITY DAY QUARTER 3/2018 DATE: December 18, 2018 Selic Corp Public Company Limited ABOUT SELIC We provide solutions for adhesive, our offer includes customized products and services that match our customers needs. Facts

689 views • 30 slides
Enumerated Authorization Policy Prosunjit Biswas, Ravi Sandhu and Ram Krishnan University of

Enumerated Authorization Policy Prosunjit Biswas, Ravi Sandhu and Ram Krishnan University of

Institute for Cyber Security Label-Based Access Control: An ABAC Model with Enumerated Authorization Policy Prosunjit Biswas, Ravi Sandhu and Ram Krishnan University of Texas at San Antonio 1 st Workshop on Attribute Based Access Control (ABAC

469 views • 26 slides
User-space Tracing with UST Mathieu Desnoyers mathieu.desnoyers@efficios.com David Goulet

User-space Tracing with UST Mathieu Desnoyers mathieu.desnoyers@efficios.com David Goulet

User-space Tracing with UST Mathieu Desnoyers mathieu.desnoyers@efficios.com David Goulet david.goulet@polymtl.ca Michel Dagenais michel.dagenais@polymtl.ca April 6-8, 2011 Collaboration Summit Presenters Mathieu Desnoyers EfficiOS

356 views • 21 slides
Linux Security State of Linux Security in 2016 Michael Boelen michael.boelen@cisofy.com DBLUG,

Linux Security State of Linux Security in 2016 Michael Boelen michael.boelen@cisofy.com DBLUG,

Linux Security State of Linux Security in 2016 Michael Boelen michael.boelen@cisofy.com DBLUG, 7 December 2016 Michael Boelen Open Source Lynis, Rootkit Hunter Business and Community Founder of CISOfy Board member and

454 views • 18 slides
Tailored Cyber Risk Solutions for Community Banks As a community financial institution, your

Tailored Cyber Risk Solutions for Community Banks As a community financial institution, your

Tailored Cyber Risk Solutions for Community Banks As a community financial institution, your cyber risks and regulatory expectations are growing faster than your resources to deal with them. Unfortunately, a single public cybersecurity or data

407 views • 17 slides
Security Architecture in a Collaborative De-Perimeterised Environment: Factors of Success Yulia

Security Architecture in a Collaborative De-Perimeterised Environment: Factors of Success Yulia

Security Architecture in a Collaborative De-Perimeterised Environment: Factors of Success Yulia Cherdantseva 1 Omer Rana 1 Jeremy Hilton 2 1 Cardiff University {y.v.cherdantseva |

593 views • 28 slides
Web Application Security Assessment Policy John Hally John.hally@comcast.net Why This Policy?

Web Application Security Assessment Policy John Hally John.hally@comcast.net Why This Policy?

Web Application Security Assessment Policy John Hally John.hally@comcast.net Why This Policy? Limit attack surface of our web applications Web application flaws/vulnerabilities are a major attack vector Protect Company

195 views • 6 slides
National Likely General Election Voter Survey August 28 th , 2017 On the web

National Likely General Election Voter Survey August 28 th , 2017 On the web

National Likely General Election Voter Survey August 28 th , 2017 On the web www.mclaughlinonline.com ML LL ND East 22 64 7 More Likely/Less Likely Re-Elect your Member of Congress: Midwest 22 62 10 Has increased the debt ceiling

199 views • 18 slides

More recommend