Presentation is loading. Please wait.

Presentation is loading. Please wait.

Presented by: Besnik LIMAJ Team Leader

Published byIyana Pinn Modified over 9 years ago

Similar presentations

Presentation on theme: "Presented by: Besnik LIMAJ Team Leader"— Presentation transcript:

1 Presented by: Besnik LIMAJ Team Leader
EU funded Enhancing Cyber Security Project IFS/2013/329397 19/09/2014 Presented by: Besnik LIMAJ Team Leader

2 1 PROJECT SYNOPSIS 2

3 EUROPEAN UNION’S INSTRUMENT CONTRIBUTING TO STABILITY AND PEACE
PROJECT FUNDED BY: EUROPEAN UNION’S INSTRUMENT CONTRIBUTING TO STABILITY AND PEACE LAUNCHED: JANUARY 2014 – DURATION 24 MONTHS TOTAL BUDGET: 1,485,000 Euros

4 2 CONSORTIUM 4

5 CONSORTIUM Adetef is the international technical assistance consultancy agency and operator for French ministries in charge of Economy and Finance, Industry, Sustainable Development and State Reform. It takes up and disseminates financial and economic best practices, providing national governments and public authorities with cutting-edge technical expertise from French officials and public sector experts. CIVI.POL Conseil is the in-house consulting and service company of the French Ministry of Interior, and its mandated body for international assistance. Since its founding in 2001, CIVI.POL Conseil has been providing services in the areas of the French Ministry of Interior.

6 3 PROJECT PARTNER COUNTRIES 6

7 East Europe and Western Balkans
FYROM – MOLDOVA – KOSOVO - AZERBAIJAN REGIONS: East Europe and Western Balkans PARTNER COUNTRIES: The Former Yugoslav Republic of Macedonia, Kosovo, and Moldova

8 4 OBJECTIVE AND EXPECTED RESULTS 8

9 increase the security and resilience
OVERALL OBJECTIVE: increase the security and resilience of ICT networks in the partner Countries by building and training local capacities to adequately prevent, respond to cyber attacks and/or accidental failures

10 EXPECTED RESULTS TO BE ACHIEVED
Creation and/or the development of National Computer Emergency Response Teams (CERTs) and 24/7 Contact Points; Adoption of a National Cyber Security Strategy (NCSS) Development of effective international cooperation

11 COMPONENTS COMPONENT 1:
Cyber security strategies and awareness raising COMPONENT 2: CERT Capacity Building COMPONENT 3: Enhancing Cooperation: PPPs and International cooperation

12 5 PROJECTS ACTIVITY AREAS 12

13 CYBER SECURITY STRATEGIES AND AWARENESS RAISING
COMPONENT 1 CYBER SECURITY STRATEGIES AND AWARENESS RAISING CYBER SECURITY STRATEGY: ACTIVITY AREA Advice on creation and adoption of National Cyber Security Strategies (including advice on policy, financial and legal implications) AWARENESS RAISING: ACTIVITY AREA Advice on raising awareness on cyber security including organisation of national and international workshops for decision makers and a closing conference

14 ENHANCING CERTs CAPACITY
COMPONENT 2 ENHANCING CERTs CAPACITY ACTIVITY AREA Support on establishment/strengthening of operational CERTs units (including inter alia advice on developing effective cyber security incident reporting; Skills training enhancement) ACTIVITY AREA Facilitation of joint cyber security exercises ACTIVITY AREA Advice on development of specific curriculum/training course for CERT officers

15 ENHANCING COOPERATION: PPPs AND INTERNATIONAL COOPERATION
COMPONENT 3 ENHANCING COOPERATION: PPPs AND INTERNATIONAL COOPERATION PPPs ACTIVITY AREA Enhance cooperation between government and private sector on Cyber Security and advice on creation of new flexible and updated academic curricula including computer science (CS), and science, technology, engineering and mathematics (STEM) degrees INTERNATIONAL COOPERATION ACTIVITY AREA 3.2. – Foster cooperation with international bodies as ENISA in the field of cyber security ACTIVITY AREA Facilitation of participation in international events on cyber security for the CERTs and 24/7 points of contact . ;

16 6 ACTIVITY STEPS on CERT’s 16

17 ADVICE ON CREATION OF NATIONAL CERT’S
TASKS: • Identify the right stakeholders during the Paris Workshop in April - COMPLETED Review of the current situation in FYROM and KOSOVO – COMPLETED Chose the right services: In the early stage CERT will focus mainly on providing some of the core-services as: Alerts and warnings Incident handling Incident analysis Incident response support Incident response coordination Announcements as Proactive services; Define communication approach (SWOT/PEST Analysis); Define Mission statements; Develop organisational structure; Coordinate with direct partner location of the CERT (in accordance with the country legislation); Help to make CERT in these two countries operational. Establish process flows and operational/technical procedures for delivering core CERT services as: Alerts and Warnings; Announcements; Incident Handling; Establish cooperation with ENISA and other CERTs in the region; Draft recommendations, action plans and road map.

18 ADVICE ON STRENGTHENING OF NATIONAL CERT’S
TASKS: Identify the right stakeholders - COMPLETED Review of the current situation in Moldova - COMPLETED; Interview relevant staff of CERT - COMPLETED; Conduct needs assessment of further training - COMPLETED Review of present CERT operational rules - COMPLETED; Identify which services and trainings must be provided in priority; Implement these recommendations;

19 TWO - CYBER SECURITY EXERCISES
FACILITATION OF TWO - CYBER SECURITY EXERCISES Month 20 Month 14

20 METHODOLOGY

21 PARTICIPATION IN RELEVANT CYBER SECURITY MEETINGS
FACILITATION OF PARTICIPATION IN RELEVANT CYBER SECURITY MEETINGS

22 OTHER TAILOR MADE ACTIVITIES BASED ON SPECIFIC COUNTRY NEEDS

23 7 COUNTRY FOCAL POINTS 23

24 THE FORMER YUGOSLAV REPUBLIC OF MACEDONIA
COUNTRY FOCAL POINTS THE FORMER YUGOSLAV REPUBLIC OF MACEDONIA National team’s representatives: The Cyber Crime Unit – MoI; Ministry of Information Society and Administration Agency for Electronic Communications - (CERT) Ministry of Interior University, MASIT ...

25 COUNTRY FOCAL POINTS National team’s representatives:
KOSOVO National team’s representatives: Office of the Prime Minister Agency of Information Society The Cyber Crime Unit – MoI; Regulatory Authority of Electronic and Postal Communications – C.E.R.T. Ministry of Justice University

26 COUNTRY FOCAL POINTS National team’s representatives: CERT – GOV – MD
MOLDOVA National team’s representatives: CERT – GOV – MD Ministry of Internal Affairs Office of the Prosecutor General National Center for Protection of Personal Data University

27 8 CERT’s in PARTNER COUNTRIES 27

28 FYROM - MACEDONIA LOCATION: Agency for Electronic Communications
LEGAL FRAMEWORK: Ministry for Information Society and Administration in coordination with AEC – in a process of ammending the Law on Electronic Communications – Indicative expected ammendment of the Law – December 2014 STAFF: AEC – 140 Employees - CERT – up to 5 persons Proposed MKD- CERT implementation phases are:

29 Phase 2 Phase 3 FYROM - MACEDONIA Phase 1 Reactive services
Incident response and handling (both remote and onsite) Alerts and warnings Vulnerability response Proactive services Announcements and basic awareness Education Training Phase 2 Reactive services Incident response coordination Vulnerability response coordination Thread analysis Proactive services Vulnerability analysis Technology watch Security quality Advanced awareness Education Training Phase 3 Reactive services Security audits and assessments Proactive services Forensic analysis Security quality management services Risk analysis Security consulting

30 KOSOVO Services Basic KOS-CERT services ( ): Reactive services Incident analysis and response Alerts and warnings Proactive services Announcements Training LOCATION: Regulatory Authority for Electronic and Postal Communications (RAEPC) LEGAL FRAMEWORK: Regulated with the Law on Electronic Communications No. 04/L-109 – November 2012 and Electronic Comm. Sectoral Policy‐ Digital Agenda for Kosovo 2013‐2020 STAFF: RAEPC – 39 Employees - CERT – up to 5 persons and by the end of 2016 – in KOS-CERT are planning to work 8-10 people Current situation: Job advert published: By end of September 2014 KOS-CERT – 2 people should be employed High officer for Network Security and Officer for Service developing

31 KOSOVO Mobile Penetration rates in Kosovo:
Broadband Penetration rates:

32 MOLDOVA ABOUT CERT-GOV-md
CERT-GOV-MD is a governmental computer security incident response team founded within State Enterprise “Center of Special Telecommunications”. CERT-GOV-MD's constituency are public authorities and critical information infrastructure providers of the Republic of Moldova. State Chancellery Government S.E. Center of Special Telecommunications Host organization Cyber Security Center CERT-GOV-MD Public Authorities Critical information infrastructure providers Constituency

33 Security quality management services:
MOLDOVA CERT-GOV-md Services CERT-GOV-MD Reactive services: - Alerts and warnings; - Incident handling; - Incident response support; - Incident response coordination. Proactive services: - Announcements; - Security-related information dissemination (Bulletins, Newsletters, Good practice guides). Security quality management services: Awareness building; Security Consulting. Additional Services: Security audit; ISO implementation.

34 INTERNATIONAL COOPERATION
MOLDOVA INTERNATIONAL COOPERATION

35 9 TEAM - NEXT STEPS 35

36 TEAM KEY EXPERTS: Besnik LIMAJ, KE 1: TEAM LEADER
Emilio BUGLI INNOCENTI KE 2: C.S. EXPERT POOL OF NON KEY EXPERTS: SENIOR EXPERTS: JUNIOR EXPERT: MORE S.T.E. TO BE IDENTIFIED PER SPECIFIC TASKS OF THE PROJECT

37 PROGRESS UP TO - JULY 2014 Project team mobilised;
Overlaps with other projects identified and avoided Development of a detailed and updated Project Work Plan Training Needs Analysis conducted; Based on the Training Needs Analysis results, suggestions on the capacity building proposed in a detailed plan of activities; Networks with relevant national stakeholders and international partners established; Inception and 1st Progress Report submitted to the Contracting Authority.

38 NEXT STEPS – UNTIL END OF DECEMBER, 2014
ROME, ITALY - 43rd TF-CSIRT Meeting – September, 2014 SIBIU, ROMANIA TRAINING, CONFERENCE AND WORKSHOP ON CYBER SECURITY 30 SEP-4OCT 2014 PARIS, FRANCE WORKSHOP ON CYBER SECURITY STRATEGY AND PPP 23-24 OCT 2014 MENTORING SESSIONS PER COUNTRY – NOVEMBER 2014 TRANSIT I – TRAINING, PRAGUE CEH - ETHICAL HACKING TRAINING RECRUITMENT OF FURTHER SHORT TERM EXPERTS

39 SHORT TERM EXPERTS

40 Contact: Besnik Limaj, Team Leader Mobile:

Download ppt "Presented by: Besnik LIMAJ Team Leader"

Similar presentations

Short overview of the SCORE project

Short overview of the SCORE project
Strengthening the Strategic Cooperation between the EU and Western Balkan Region in the field of ICT Research Input to panel discussion: Concrete actions.

Strengthening the Strategic Cooperation between the EU and Western Balkan Region in the field of ICT Research Input to panel discussion: Concrete actions.
Mutual accountability and aid transparency Mutual accountability and aid transparency Republic of Moldova 1IATI meeting, OECD Conference center.

Mutual accountability and aid transparency Mutual accountability and aid transparency Republic of Moldova 1IATI meeting, OECD Conference center.
STRENGTHENING COOPERATION ON CYBER SECURITY WITHIN THE ASEAN REGION

STRENGTHENING COOPERATION ON CYBER SECURITY WITHIN THE ASEAN REGION
1 ASEAN Regional Forum Meeting 28 – 30 April 2010 Bandar Seri Begawan, Brunei CERT-Ins Initiative on International Information Security Dr A S Kamble Director.

1 ASEAN Regional Forum Meeting 28 – 30 April 2010 Bandar Seri Begawan, Brunei CERT-Ins Initiative on International Information Security Dr A S Kamble Director.
Philippine Cybercrime Efforts

Philippine Cybercrime Efforts
REALIZING BOSNIA AND HERZEGOVINAS EUROPEAN POTENTIAL: FROM POST-CONFLICT TO PRE-ACCESSION FROM DAYTON TO BRUSSELS - PROGRESS ON EU INTEGRATION - Mr. Adnan.

REALIZING BOSNIA AND HERZEGOVINAS EUROPEAN POTENTIAL: FROM POST-CONFLICT TO PRE-ACCESSION FROM DAYTON TO BRUSSELS - PROGRESS ON EU INTEGRATION - Mr. Adnan.
The EU Adaptation Strategy

The EU Adaptation Strategy
EDULINK II ACP-EU Co-operation Programme in Higher Education Call for proposals EuropeAid/132023/D/ACT/Multi General outlines Funded by the European Union.

EDULINK II ACP-EU Co-operation Programme in Higher Education Call for proposals EuropeAid/132023/D/ACT/Multi General outlines Funded by the European Union.
Joint presentation by respective units in DGs AGRI, EMPL and REGIO IPA Components III, IV and V: Conditions for successful preparation and absorption of.

Joint presentation by respective units in DGs AGRI, EMPL and REGIO IPA Components III, IV and V: Conditions for successful preparation and absorption of.
Regional Workshop Warsaw, 18-20 January 2006 STATE UNION OF SERBIA AND MONTENEGRO Basel Protocol on Liability and Compensation Questionnaire No. 2 Ratification.

Regional Workshop Warsaw, January 2006 STATE UNION OF SERBIA AND MONTENEGRO Basel Protocol on Liability and Compensation Questionnaire No. 2 Ratification.
Evaluating administrative and institutional capacity building

Evaluating administrative and institutional capacity building
This Programme is funded by the European Union Programme implemented by Eptisa, Parsons Brinckerhoff, ICET, ITC, GIRHIMPROM and REC Caucasus Programme.

This Programme is funded by the European Union Programme implemented by Eptisa, Parsons Brinckerhoff, ICET, ITC, GIRHIMPROM and REC Caucasus Programme.
International Telecommunication Union Developing a Cybersecurity Strategy that Supports National Policy Goals “Regional Arab Forum on Cybersecurity,” Giza.

International Telecommunication Union Developing a Cybersecurity Strategy that Supports National Policy Goals “Regional Arab Forum on Cybersecurity,” Giza.
Tanzania Communications Regulatory Authority - TCRA Response to Cyber incidences in Tanzania: Where are we? Presented at Cyber Security Mini Conference.

Tanzania Communications Regulatory Authority - TCRA Response to Cyber incidences in Tanzania: Where are we? Presented at Cyber Security Mini Conference.
Coordinating communities of practises towards SD REC’s experience Kenty Richardson Director for International Relations & Strategic Development Incheon.

Coordinating communities of practises towards SD REC’s experience Kenty Richardson Director for International Relations & Strategic Development Incheon.
State of play and activities in 2014 March 2014

State of play and activities in 2014 March 2014
ENISA Cyber Security Strategies Workshop November 27, 2014 Brussels

ENISA Cyber Security Strategies Workshop November 27, 2014 Brussels
How can Parliamentarians contribute to a Positive Investment Climate? by Rainer Geiger Senior Regional Advisor, OECD 3rd Global Conference of Parliamentarians.

How can Parliamentarians contribute to a Positive Investment Climate? by Rainer Geiger Senior Regional Advisor, OECD 3rd Global Conference of Parliamentarians.
1 MINISTRY OF REGIONAL DEVELOPMENT AND PUBLIC WORKS DIRECTORATE GENERAL PROGRAMMING OF REGIONAL DEVELOPMENT Operational Programme Regional Development.

1 MINISTRY OF REGIONAL DEVELOPMENT AND PUBLIC WORKS DIRECTORATE GENERAL PROGRAMMING OF REGIONAL DEVELOPMENT Operational Programme Regional Development.

Similar presentations

Ads by Google