Presentation is loading. Please wait.

Presentation is loading. Please wait.

INFORMATION SECURITY IN ARMENIA: PRESENT STATUS AND TASKS

Published byLeo McCoy Modified over 6 years ago

Similar presentations

Presentation on theme: "INFORMATION SECURITY IN ARMENIA: PRESENT STATUS AND TASKS"— Presentation transcript:

1 INFORMATION SECURITY IN ARMENIA: PRESENT STATUS AND TASKS
Yerevan, Armenia, Ani-Plaza Hotel, September 29, 2009

2 Newest methods of testing of national network security
Eugene Prokhorenko, Head of Communications Technologies Laboratory, IIAP of NAN RA

3 Newest methods of testing of national network security
Cyber Storm The U.S. Department of Homeland Security’s (DHS) National Cyber Security Division (NCSD) successfully executed Cyber Storm, the first national cyber exercise Feb. 6 thru Feb. 10, The exercise was the first government-led, full-scale cyber security exercise of its kind. NCSD, a division within the department’s Preparedness Directorate, provides the federal government with a centralized cyber security coordination and preparedness function called for in the National Strategy for Homeland Security, the National Strategy to Secure Cyberspace and Homeland Security Presidential Directive 7. NCSD is the focal point for the federal government’s interaction with state and local government, the private sector and the international community concerning cyberspace vulnerability reduction efforts.

4 Newest methods of testing of national network security
Goals and Objectives Cyber Storm was designed to test communications, policies and procedures in response to various cyber attacks and to identify where further planning and process improvements are needed. Activities included: Exercising interagency coordination through the activation of the National Cyber Response Coordination Group (NCRCG) and the Interagency Incident Management Group (IIMG) Exercising inter-governmental and intra-governmental coordination and incident response Identifying policies and issues that either hinder or support cyber security requirements Identifying public and private information sharing mechanisms to address communications challenges Identifying the interdependence of cyber and physical infrastructures Raising awareness of the economic and national security impacts associated with a significant cyber incident Highlighting available tools and technologies for cyber incident response and recovery

5 Newest methods of testing of national network security
Participants Participants included federal and state agencies and private sector partners from the IT, telecommunications, energy, and transportation industries, as well as foreign governments Participants provided support staff to help plan and control the exercise, and to ensure that their organizations’ objectives were met

6 Newest methods of testing of national network security
The Scenario The exercise simulated a sophisticated cyber attack campaign through a series of scenarios directed at several critical infrastructure sectors. The intent of these scenarios was to highlight the interconnectedness of cyber systems with physical infrastructure and to exercise coordination and communication between the public and private sectors. Each scenario was developed with the assistance of industry experts and was executed in a closed and secure environment.

7 Newest methods of testing of national network security
Cyber Storm scenarios had three major adversarial objectives: To disrupt specifically targeted critical infrastructure through cyber attacks To hinder the governments' ability to respond to the cyber attacks To undermine public confidence in the governments' ability to provide and protect services The exercise was a simulated event with no real-world effects on, tampering with, or damage to any critical infrastructure. While the scenarios were based on hypothetical situations, they were not intended as a forecast of future terrorist-related events.

8 Newest methods of testing of national network security
Cyber Storm participants do the following: Examine organizations’ capability to prepare for, protect from, and respond to cyber attacks’ potential effects; Exercise strategic decision making and interagency coordination of incident response(s) in accordance with national level policy and procedures; Validate information sharing relationships and communications paths for collecting and disseminating cyber incident situational awareness, response and recovery information; and Examine means and processes through which to share sensitive information across boundaries and sectors without compromising proprietary or national security interests. Each Cyber Storm builds on lessons learned from previous real world disasters, ensuring that participants face more sophisticated and challenging exercises every two years.

9 Newest methods of testing of national network security
Cyber Storm I: February 2006 First government-led full-scale cyber exercise; Included over 115 organizations, including federal, state and local governments; Featured 4 sectors: information technology, communications, energy and transportation (air); and Allowed participants to respond to a variety of cyber and communications degradations and simulated attacks against critical infrastructures and to collaborate at the operational, policy and public affairs levels.

10 Newest methods of testing of national network security
Cyber Storm II: March 2008 * Involves 5 countries (Australia, Canada, New Zealand, United Kingdom, United States); 18 federal cabinet-level agencies (Department of Defense, State Department, Department of Justice, etc.); 9 states (Pennsylvania, Colorado, California, Delaware, Texas, Illinois, Michigan, North Carolina, and Virginia ); and over 40 private sector companies (Juniper Networks, Microsoft, McAfee, Cisco, NeuStar, The Dow Chemical Company, Inc., PPG Industries, ABB Group, Air Products & Chemical Inc., Nova Chemical, and Wachovia); * Affects 4 infrastructure sectors including chemical, information technology, communications and transportation (rail/pipe) and used 10 information sharing and analysis centers; * Exercises the processes, procedures, tools and organizational response to a multi-sector coordinated attack through, and on, the global cyber infrastructure; * Allows players to exercise and evaluate their cyber response capabilities to a multi-day coordinated attack and to gauge the cascading effects of cyber disasters on other critical infrastructures, shaping response priorities; and * Exercises government and private sector concepts and processes developed since Cyber Storm I, requiring great interaction and coordination at the strategic. operational, and tactical levels.

Download ppt "INFORMATION SECURITY IN ARMENIA: PRESENT STATUS AND TASKS"

Similar presentations

Critical Infrastructure Protection Policy Priorities Sara Pinheiro European Commission DG Home Affairs.

Critical Infrastructure Protection Policy Priorities Sara Pinheiro European Commission DG Home Affairs.
AFCEA DC Cyber Security Symposium Military Joint Cyber Command Panel Harry Raduege Lieutenant General, USAF (Ret) Chairman, Center for Network Innovation.

AFCEA DC Cyber Security Symposium Military Joint Cyber Command Panel Harry Raduege Lieutenant General, USAF (Ret) Chairman, Center for Network Innovation.
Patient Movement in the Midst of a Disaster

Patient Movement in the Midst of a Disaster
Homeland Security at the FCC July 10, 2003. FCCs Homeland Security Focus Interagency Partnerships Industry Partnerships Infrastructure Protection Communications.

Homeland Security at the FCC July 10, FCCs Homeland Security Focus Interagency Partnerships Industry Partnerships Infrastructure Protection Communications.
Raising the Standard for Improved Flood Risk Management in the Midwest Raising the Standard for Improved Flood Risk Management in the Midwest Interagency.

Raising the Standard for Improved Flood Risk Management in the Midwest Raising the Standard for Improved Flood Risk Management in the Midwest Interagency.
Building from the Ground Up Disaster Management: The Experience of A Small Business Frances Kernodle Associates (FKA)

Building from the Ground Up Disaster Management: The Experience of A Small Business Frances Kernodle Associates (FKA)
A Brief Overview of Emergency Management Office of Emergency Management April 2006 Prepared By: The Spartanburg County Office of Emergency Management.

A Brief Overview of Emergency Management Office of Emergency Management April 2006 Prepared By: The Spartanburg County Office of Emergency Management.
1 Pipeline Security Presented to: Pipeline Safety Trust New Orleans, Louisiana November 5, 2010.

1 Pipeline Security Presented to: Pipeline Safety Trust New Orleans, Louisiana November 5, 2010.
Centro Internacional para Estudios del Medio Ambiente y el Desarrollo Sostenible CIEMADeS Centro Internacional para Estudios del Medioambiente y el Desarrollo.

Centro Internacional para Estudios del Medio Ambiente y el Desarrollo Sostenible CIEMADeS Centro Internacional para Estudios del Medioambiente y el Desarrollo.
Facilitating a Dialog between the NSDI and Utility Companies J. Peter Gomez Manager, Information Requirements, Xcel Energy.

Facilitating a Dialog between the NSDI and Utility Companies J. Peter Gomez Manager, Information Requirements, Xcel Energy.
1 The University of Southern Mississippi National Center for Spectator Sport Safety and Security Cyber Security Tabletop Exercise Facilitator: Facilitator:

1 The University of Southern Mississippi National Center for Spectator Sport Safety and Security Cyber Security Tabletop Exercise Facilitator: Facilitator:
David A. Brown Chief Information Security Officer State of Ohio

David A. Brown Chief Information Security Officer State of Ohio
National Infrastructure Protection Plan

National Infrastructure Protection Plan
Cyber Security R&D Challenges: A Homeland Security Perspective Simon Szykman, Ph.D. Director, Cyber Security R&D 202-254-5802.

Cyber Security R&D Challenges: A Homeland Security Perspective Simon Szykman, Ph.D. Director, Cyber Security R&D
Addressing Terrorist Use of the Internet, Cyber Crime and Other Threats: National Expert Workshop Forging a Comprehensive Approach to Cyber Security Richard.

Addressing Terrorist Use of the Internet, Cyber Crime and Other Threats: National Expert Workshop Forging a Comprehensive Approach to Cyber Security Richard.
DHS, National Cyber Security Division Overview

DHS, National Cyber Security Division Overview
National Protection and Programs Directorate Department of Homeland Security The Office of Infrastructure Protection Cybersecurity Brief [Date of presentation]

National Protection and Programs Directorate Department of Homeland Security The Office of Infrastructure Protection Cybersecurity Brief [Date of presentation]
National Space-Based Positioning, Navigation, and Timing (PNT) Federal Advisory Board DHS Challenges & Opportunities Captain Curtis Dubay, P.E. Department.

National Space-Based Positioning, Navigation, and Timing (PNT) Federal Advisory Board DHS Challenges & Opportunities Captain Curtis Dubay, P.E. Department.
Greg Shaw 202-994-6736 How do we turn private sector preparedness into an investment rather than a cost of doing.

Greg Shaw How do we turn private sector preparedness into an investment rather than a cost of doing.
PPA 573 – Emergency Management and Homeland Security Lecture 4a – Disasters and Decisions.

PPA 573 – Emergency Management and Homeland Security Lecture 4a – Disasters and Decisions.

Similar presentations

Ads by Google