CYSPA - EC projects supporting NIS

Transcription

1 CYSPA - EC projects supporting NIS Nina Olesen, EOS March 2014 Athens, Greece

2 CYSPA the European project The European Cyber Security Protection Alliance, or CYSPA, is an initiative by 17 organisationsfrom the security, telecommunications, finance, energy and transport sectors The project CYSPA is set up with the financial support of its founding members as well as the European Commission research programme FP7 in ICT Trust & Security CYSPA began in October The initial output of its activities will be delivered to the European Commission and all interested stakeholders during 2013 and 2014, and the final output is expected by March 2015 The CYSPA project aims to evolve into a self-sustained Alliance 2

3 CYSPA 17 founding members EHusmann Solutions & Services Providers Users Research organisations 3

4 What are the needs? Do you KNOWwhat your exposure is to cyber threats? Which assets are the most precious to your organisation? Wheredo you need to invest? In operations, in facilities, in education? Are you aware of the European policies in the making / applicable to your sector?

5 CYSPA addressing the need SERVICES CYSPA the European Cyber Security Protection Alliance aims to address the need by Empowering your organisation to assess the level of exposure to RELEVANT cyber-threats through a simple approach Understand the key cyber threats to YOUR domain Evaluate through a relative approach (is this part of my operations more at risk than this other part?) 5

6 CYSPA concrete benefits SERVICES CYSPA aims to DELIVER a set of services to its member organisations Operational services to your organisation Risk methodology In-house seminar Sector based analysis (where are you positioned versus other players in your domain?) Strategic services to your organisation Contribute to the European policy on cyber-security => NIS platform Put needs of your sector in the debate => Position papers 6

7 CYSPA addressing the need STRATEGIC CONTENT CYSPA the Cyber Security Protection Alliance aims to address the need by Ensuring your organisation needs are voiced as contributions to the European debate, leading to directives and other regulations applicable to your sector are shared with other stakeholders from your sector Know what is relevant to your sector at European level Contribute your needs to directives under elaboration Share recommendations with other stakeholdersfrom your sector 7

8 CYSPA the strategic content STRATEGIC CONTENT The Alliance aims to analyse and recommend practical methods, standards, information, technologies and behaviours to support protection from cyber attacks and increase the ability to respond to them to work together to applythe practical methods, standards, information, technologies within member organisations to evaluate and evolve them, and learn by doing 8

9 CYSPA the open Alliance CYSPA isopento users, ICT providers, researchers, sector associations and public authorities CYSPA promotes a benefits oriented approach For providers, benefits include faster time to marketfor innovative cyber security capabilities. For public authorities, an increased understanding of cyber risks that could limit e-government services. For users, a tailored approachbetter focused on individual needs. 9

10 External stakeholders - relationships Users Target sectors e.g. Transport, Finance, Energy, Telecom, egovernment Providers Cyber security industry e.g. SMEs, large scale vendors Research bodies Citizens Public Authorities European cyber security bodies e.g. ENISA, DG CONNECT, Europol etc National cyber security authorities e.g. OCSIA, CERTs Other European/national bodies Propose agenda & endorse Propose action & advise Create awareness Recommend capabilities Lead by example Propose new ideas Communicate & implement Highlight market requirements (through capability gap analysis)

11 External stakeholders benefits of the CYSPA Alliance Benefits to users Increased awareness about the existence of cyber risk; Increased understanding about the impact of cyber threats on target sectors; Knowledge of possible improved protection against and mitigation of effects of cyber disruptions; Increased awareness of the value of good cyber security as a market differentiator for organisations. Understanding possible ways to decrease costs of cyber threats Users Target sectors National cyber security authorities Public Authorities Other European/ National authorities European cyber security authorities Benefits to providers Increased understanding of market requirements; Growth in cyber security market through increased awareness amongst consumer organisations; Faster time to market for innovative cyber security capabilities via closer links users / suppliers Providers Cyber security industry Research bodies Benefits to public authorities Increased understanding of cyber risk posed to users across EU; Availability of a realistic set of recommendations and advice for policies validated by users and providers together; Support to cybersecurity policy implementation in relation to best practice and self regulations proposed by industry, based upon economic and competitiveness models

12 Scope for timeline CYSPA will focus on security of individual organisations economic sectors represented within the Alliance (egovernment, energy, finance, transport) recommendations and services to better protect cyber space for industry maximising value by considering maturing preexisting standards/ technologies wherever possible complementing on-going activities at European level and collaborating with the NIS platform 12

13 CYSPA support to NIS Risk management and metrics Best practices and information sharing at sector level and with public authorities Analysis of impact of cyber disruptions on critical infrastructure Protection of assets and threat detection Linking of users and providers (community approach) Involvement in NIS Platform Coordination with other projects: CAPITAL, Courage, 13

14 CYSPA added value CYSPA differentiates itself from other cyber security initiatives at EU level by: Looking at risk scenarios on a per sector basis Having a dedicated community portal (with a dynamic online repository of technology & solutions) Linking users and providers (thus creating a unique network where fighting cyber threats becomes a shared challenge) Providing the gateway for stakeholders to communicate their needs at the highest EU level (policy dimension) 14

15 Join us! CYSPA will open its Alliance in 2014 beyond its 17 founding members during the CYSPA launch week Join us today we will keep you informed of the launch event closest to you!

16 Thank you for your attention! nina.olesen@eos-eu.com CYSPA_Project Website: