Nationwide Cyber Situational Awareness Framework for Critical In - - PowerPoint PPT Presentation

nationwide cyber situational
SMART_READER_LITE
LIVE PREVIEW

Nationwide Cyber Situational Awareness Framework for Critical In - - PowerPoint PPT Presentation

Dec 24, 2023 318 likes •475 views

A A Conceptual Nationwide Cyber Situational Awareness Framework for Critical In Infrastructures Hayretdin Bahi , Olaf Manuel Maennel Centre For Digital Forensics and Cyber Security Tallinn University of Technology Evolvement of Cyber

slide-1
SLIDE 1

A A Conceptual Nationwide Cyber Situational Awareness Framework for Critical In Infrastructures

Hayretdin Bahşi, Olaf Manuel Maennel Centre For Digital Forensics and Cyber Security Tallinn University of Technology

slide-2
SLIDE 2

Evolvement of Cyber Security

Technical Technical Organizational Technical Organizational National

slide-3
SLIDE 3

Cyber Security of Critical Infrastructures

  • National security vs cyber security
  • Physical effects of cyber threats
  • Dependencies among national

infrastructures

  • Cascading effects
  • Targets of various hacker groups including

state sponsored ones

slide-4
SLIDE 4

What is Situational Awareness (SA)?

Endsley’s Definition

“The perception of the elements in the environment within a volume of time and space, the comprehension

  • f their meaning and the projection
  • f their status in the near future”

Perception Comprehension Projection

slide-5
SLIDE 5

Different Interpretations of Cyber Situational Awareness

High Level Security Reports Information Sharing Network Monitoring Security Event Correlation

slide-6
SLIDE 6

Cyber Situational Awareness at National Level

  • Situational awareness and national strategies
  • National CERTs to national cyber security
  • perations
  • Capability imrovement beyond of incident

response

  • Threat monitoring systems
  • Information sharing
slide-7
SLIDE 7

Objectives of Nationwide Cyber Situational Awareness

Risk Assessment Support

  • Threat
  • Vulnerability
  • Bussiness
  • Benefit from Safety

Domain

Support for Different Decision Making Levels

  • National
  • Organizational

Nationwide Analysis

  • Dependencies among

different CIs

  • Detection of coordinated

attacks

Conceptual Nationwide Cyber Situational Awareness Framework

slide-8
SLIDE 8

Decision Making Hierarchy

National Level

National security responsibilities

Strategic Level

Alignment of IT and Cyber Security activities with strategic goals and missions

Tactical Level

Management activities of IT and core business units

Operational Level

Day-to-day technical cyber security

  • perations

National Decision Makers Decision Makers of Critical Infrastructures

  • Incident responders
  • Security administrators
  • Security analysts
  • IT specialists
  • IT Unit Managers
  • Security Unit

Managers

  • Business Unit

Managers

  • CEOs
  • CIOs
  • CISOs
  • Heads of Auditing
  • Disaster Management

Authorities

  • Regulatory Bodies
  • National Cyber

Security Council Members

slide-9
SLIDE 9

General View of Subsystems

slide-10
SLIDE 10

Organizational CSA Subsystems

slide-11
SLIDE 11

National CSA Subsytem

slide-12
SLIDE 12

Research Agenda

Research Agenda

Socia- Technical Model Ontology Development Data Correlation Privacy Preserving Methods Cyber Threat Intelligence with Honeynets Big Data Analytics

Data Visualization

slide-13
SLIDE 13