5CONSORTIUMAdetef is the international technical assistance consultancy agency and operator for French ministries in charge of Economy and Finance, Industry, Sustainable Development and State Reform.It takes up and disseminates financial and economic best practices, providing national governments and public authorities with cutting-edge technical expertise from French officials and public sector experts.CIVI.POL Conseil is the in-house consulting and service company of the French Ministry of Interior, and its mandated body for international assistance.Since its founding in 2001, CIVI.POL Conseil has been providing services in the areas of the French Ministry of Interior.
9increase the security and resilience OVERALL OBJECTIVE:increase the security and resilienceof ICT networks in the partner Countriesbybuilding and training local capacitiestoadequately prevent, respond to cyber attacks and/or accidental failures
10EXPECTED RESULTS TO BE ACHIEVED Creation and/or the development of National Computer Emergency Response Teams (CERTs) and 24/7 Contact Points;Adoption of a National Cyber Security Strategy (NCSS)Development of effective international cooperation
11COMPONENTS COMPONENT 1: Cyber security strategies and awareness raisingCOMPONENT 2:CERT Capacity BuildingCOMPONENT 3:Enhancing Cooperation:PPPs and International cooperation
13CYBER SECURITY STRATEGIES AND AWARENESS RAISING COMPONENT 1CYBER SECURITY STRATEGIES AND AWARENESS RAISINGCYBER SECURITY STRATEGY:ACTIVITY AREA Advice on creation and adoption of National Cyber Security Strategies (including advice on policy, financial and legal implications)AWARENESS RAISING:ACTIVITY AREA Advice on raising awareness on cyber security including organisation of national and international workshops for decision makers and a closing conference
14ENHANCING CERTs CAPACITY COMPONENT 2ENHANCING CERTs CAPACITYACTIVITY AREA Support on establishment/strengthening of operational CERTs units (including inter alia advice on developing effective cyber security incident reporting; Skills training enhancement)ACTIVITY AREA Facilitation of joint cyber security exercisesACTIVITY AREA Advice on development of specific curriculum/training course for CERT officers
15ENHANCING COOPERATION: PPPs AND INTERNATIONAL COOPERATION COMPONENT 3ENHANCING COOPERATION: PPPs AND INTERNATIONAL COOPERATIONPPPsACTIVITY AREA Enhance cooperation between government and private sector on Cyber Security and advice on creation of new flexible and updated academic curricula including computer science (CS), and science, technology, engineering and mathematics (STEM) degreesINTERNATIONAL COOPERATIONACTIVITY AREA 3.2. – Foster cooperation with international bodies as ENISA in the field of cyber securityACTIVITY AREA Facilitation of participation in international events on cyber security for the CERTs and 24/7 points of contact.;
17ADVICE ON CREATION OF NATIONAL CERT’S TASKS:• Identify the right stakeholders during the Paris Workshop in April - COMPLETEDReview of the current situation in FYROM and KOSOVO – COMPLETEDChose the right services: In the early stage CERT will focus mainly on providing some of the core-services as:Alerts and warningsIncident handlingIncident analysisIncident response supportIncident response coordinationAnnouncements as Proactive services;Define communication approach (SWOT/PEST Analysis);Define Mission statements;Develop organisational structure;Coordinate with direct partner location of the CERT (in accordance with the country legislation);Help to make CERT in these two countries operational. Establish process flows and operational/technical procedures for delivering core CERT services as:Alerts and Warnings;Announcements;Incident Handling;Establish cooperation with ENISA and other CERTs in the region;Draft recommendations, action plans and road map.
18ADVICE ON STRENGTHENING OF NATIONAL CERT’S TASKS:Identify the right stakeholders - COMPLETEDReview of the current situation in Moldova - COMPLETED;Interview relevant staff of CERT - COMPLETED;Conduct needs assessment of further training - COMPLETEDReview of present CERT operational rules - COMPLETED;Identify which services and trainings must be provided in priority;Implement these recommendations;
24THE FORMER YUGOSLAV REPUBLIC OF MACEDONIA COUNTRY FOCAL POINTSTHE FORMER YUGOSLAV REPUBLIC OF MACEDONIANational team’s representatives:The Cyber Crime Unit – MoI;Ministry of Information Society and AdministrationAgency for Electronic Communications - (CERT)Ministry of InteriorUniversity, MASIT ...
25COUNTRY FOCAL POINTS National team’s representatives: KOSOVONational team’s representatives:Office of the Prime MinisterAgency of Information SocietyThe Cyber Crime Unit – MoI;Regulatory Authority of Electronic and Postal Communications – C.E.R.T.Ministry of JusticeUniversity
26COUNTRY FOCAL POINTS National team’s representatives: CERT – GOV – MD MOLDOVANational team’s representatives:CERT – GOV – MDMinistry of Internal AffairsOffice of the Prosecutor GeneralNational Center for Protection of Personal DataUniversity
28FYROM - MACEDONIA LOCATION: Agency for Electronic Communications LEGAL FRAMEWORK: Ministry for Information Society and Administration in coordination with AEC – in a process of ammending the Law on Electronic Communications– Indicative expected ammendment of the Law – December 2014STAFF: AEC – 140 Employees - CERT – up to 5 personsProposed MKD- CERT implementation phases are:
30KOSOVOServicesBasic KOS-CERT services ( ):Reactive servicesIncident analysis and responseAlerts and warningsProactive servicesAnnouncementsTrainingLOCATION: Regulatory Authority for Electronic and Postal Communications (RAEPC)LEGAL FRAMEWORK: Regulated with theLaw on Electronic Communications No. 04/L-109 – November 2012 andElectronic Comm. Sectoral Policy‐ Digital Agenda for Kosovo 2013‐2020STAFF: RAEPC – 39 Employees - CERT – up to 5 persons and by the end of 2016 – in KOS-CERT are planning to work 8-10 peopleCurrent situation:Job advert published:By end of September 2014 KOS-CERT – 2 people should be employedHigh officer for Network Security andOfficer for Service developing
31KOSOVO Mobile Penetration rates in Kosovo: Broadband Penetration rates:
32MOLDOVA ABOUT CERT-GOV-md CERT-GOV-MD is a governmental computer security incident response team founded within State Enterprise “Center of Special Telecommunications”. CERT-GOV-MD's constituency are public authorities and critical information infrastructure providers of the Republic of Moldova.State ChancelleryGovernmentS.E. Center of Special TelecommunicationsHost organizationCyber Security Center CERT-GOV-MDPublic AuthoritiesCritical information infrastructure providersConstituency
33Security quality management services: MOLDOVACERT-GOV-md ServicesCERT-GOV-MDReactive services:- Alerts and warnings;- Incident handling;- Incident response support;- Incident response coordination.Proactive services:- Announcements;- Security-related information dissemination (Bulletins, Newsletters, Good practice guides).Security quality management services:Awareness building;Security Consulting.Additional Services:Security audit;ISO implementation.
36TEAM KEY EXPERTS: Besnik LIMAJ, KE 1: TEAM LEADER Emilio BUGLI INNOCENTI KE 2: C.S. EXPERTPOOL OF NON KEY EXPERTS:SENIOR EXPERTS:JUNIOR EXPERT:MORE S.T.E. TO BE IDENTIFIED PER SPECIFIC TASKS OF THE PROJECT
37PROGRESS UP TO - JULY 2014 Project team mobilised; Overlaps with other projects identified and avoidedDevelopment of a detailed and updated Project Work PlanTraining Needs Analysis conducted;Based on the Training Needs Analysis results, suggestions on the capacity building proposed in a detailed plan of activities;Networks with relevant national stakeholders and international partners established;Inception and 1st Progress Report submitted to the Contracting Authority.
38NEXT STEPS – UNTIL END OF DECEMBER, 2014 ROME, ITALY - 43rd TF-CSIRT Meeting – September, 2014SIBIU, ROMANIA TRAINING, CONFERENCE AND WORKSHOP ON CYBER SECURITY30 SEP-4OCT 2014PARIS, FRANCE WORKSHOP ON CYBER SECURITY STRATEGY AND PPP23-24 OCT 2014MENTORING SESSIONS PER COUNTRY – NOVEMBER 2014TRANSIT I – TRAINING, PRAGUECEH - ETHICAL HACKING TRAININGRECRUITMENT OF FURTHER SHORT TERM EXPERTS