How To Be A Successful Member Of The European Agency For Security And Safety

Transcription

1 CEPOL Cybercrime forensics & digital evidence course Role of eu-lisa on the Cybersecurity: Present and Future Perspectives Role of eu-lisa on the Cybersecurity: Present and Future Perspectives Tallinn 19 November 2014

2 Agenda Definition of cybersecurity Who are we What do we do Why we do How and when we are secure eu-lisa s role on the cybersecurity eu-lisa in the European cybersecurity context Ambition Research Cooperation Thoughts for the future 19/11/2014 Slide 2 of 16 Role of eu-lisa on the Cybersecurity: Present and Future Perspectives

3 Definition of Cyber-Security Security: protection of valuable assets Crime: human action convicted by the criminal law Defense: measures taken to protect against a potential or existing offense Cyber: electronic space Cyber-security: protection of valuable assets in the electronic space 19/11/2014 Slide 3 of 16 Role of eu-lisa on the Cybersecurity: Present and Future Perspectives

4 Who and Where are we European Agency for the operational management of large-scale IT systems in the area of freedom, security and justice We are located in Tallinn Estonia (Headquarters) Strasbourg France (Operations) SJP Austria (Backup Operations) Liaison Office in Brussels 19/11/2014 Slide 4 of 16 Role of eu-lisa on the Cybersecurity: Present and Future Perspectives

5 What do we do Operational management of SIS II Schengen Information System VIS visa Information System EURODAC European dactyloscopic system Communications infrastructure 19/11/2014 Slide 5 of 16 Role of eu-lisa on the Cybersecurity: Present and Future Perspectives

6 Why we do Legal bases Regulations are the foundation of our activities High focus on security, data protection and business continuity aspects of the three large IT systems Security is a legal obligation 19/11/2014 Slide 6 of 16 Role of eu-lisa on the Cybersecurity: Present and Future Perspectives

7 How and when are we secure eu-lisa makes use of common frameworks to organise security, which is divided in to the following domains: Physical security Information security INFOSEC - CIA triad Organisational security Personnel security Industrial security 19/11/2014 Slide 7 of 16 Role of eu-lisa on the Cybersecurity: Present and Future Perspectives

8 Role of eu-lisa in the Cybersecurity Broad view, per large scale IT systems nature Actively contribute in the implementation of the cybersecurity strategy at EU level Operational cooperation with MS Security Officers Network - SON 19/11/2014 Slide 8 of 16 Role of eu-lisa on the Cybersecurity: Present and Future Perspectives

9 Agenda Definition of cybersecurity Who are we What do we do Why we do How and when we are secure eu-lisa s role on cybersecurity eu-lisa in the European cybersecurity context Ambition Research Cooperation Thoughts for the future 19/11/2014 Slide 9 of 16 Role of eu-lisa on the Cybersecurity: Present and Future Perspectives

10 eu-lisa Strategy Strategic Goals of the Agency 1: Continue to grow as a contributor to and facilitator for freedom, security and justice policies in the EU 2: Become an acknowledged EU ICT centre of excellence and service provider 3: Grow as the principal EU ICT technology centre and expertise hub 4: Develop a modern efficient and agile organisation 19/11/2014 Slide 10 of 16 Role of eu-lisa on the Cybersecurity: Present and Future Perspectives

11 eu-lisa Strategy Strategic Goal 3: Grow as the principal EU ICT technology centre and expertise hub Continue to grow its internal expertise in relevant technical areas Exchange ICT best practices, experiences and knowledge with identified partners Deepening and strengthening partnerships 19/11/2014 Slide 11 of 16 Role of eu-lisa on the Cybersecurity: Present and Future Perspectives

12 Research as a driver for success Technology monitoring Desk study and media monitoring Liaison with MS, academic and industry experts Participation in project panels (e.g. security theme of H2020) Attendance at meetings, conferences and courses 19/11/2014 Slide 12 of 16 Role of eu-lisa on the Cybersecurity: Present and Future Perspectives

13 Operationally implementing outcomes of research Small-scale proofs of concept Possible upcoming projects in the cyber security realm Testing in dedicated environments Roll-out, future-proofing, lessons learned, dissemination to partners PKI systems Identity and Access management in distributed systems Advanced cryptography Automated tools for internal security assurance 19/11/2014 Slide 13 of 16 Role of eu-lisa on the Cybersecurity: Present and Future Perspectives

14 Strengthening partnerships SON WAs with Europol, EASO, Frontex signed, others planned. The parties may assist each other with know-how, expertise, best practices, lessons learned and advice in technical, operational and IT security related matters 19/11/2014 Slide 14 of 16 Role of eu-lisa on the Cybersecurity: Present and Future Perspectives

15 A look to the (near) future eu-lisa and beyond System consolidation will be key for reasons of efficiency and future-proofing and protection from cyber threats. Identity management will become more crucial and lessons from eu-lisa may be adapted to scale. Knowledge sharing within the EU and with the private sector will need to be more efficient. Technologies and procedures for incident detection and response will require advancement. eu-lisa will play an increasingly key role in EU internal security, including cybersecurity. 19/11/2014 Slide 15 of 16 Role of eu-lisa on the Cybersecurity: Present and Future Perspectives

16 19/11/2014 Slide 16 of 16 Role of eu-lisa on the Cybersecurity: Present and Future Perspectives