Presentation is loading. Please wait.

Presentation is loading. Please wait.

(Geneva, Switzerland, September 2014)

Published byMatilda Hall Modified over 8 years ago

Similar presentations

Presentation on theme: "(Geneva, Switzerland, September 2014)"— Presentation transcript:

1 (Geneva, Switzerland, 15-16 September 2014)
ITU Workshop on “ICT Security Standardization for Developing Countries” (Geneva, Switzerland, September 2014) ICT Regulator Role on National Security and Critical Infrastructure Protection Suliman A. Alsamhan Electronic Evidence Supervisor, Communication and Information Technology Commission (CITC) - Saudi Arabia Geneva, Switzerland, September 2014

2 Communication and Information Technology Commission (CITC) Role
Communication and Information Technology Commission (CITC) recognized information security as one of its main responsibilities Increasing the information security awareness level in the Kingdom of Saudi Arabia Geneva, Switzerland, September 2014

3 Communication and Information Technology Commission (CITC) Role
Establishing National Computer Emergency Response Team (CERT-SA) Enforcing security and privacy requirements on licensed operators Contribution to the development of cybercrime law National Computer Emergency Response Team (CERT-SA) To increase the information security awareness level To coordinate national effort towards promoting IT Security best practices and creating trust among cyber community To help managing information security attacks and incidents To be the reference point in information security for the Cyber Community To build Saudi talent and human capacity in the field of information security To provide a trusted environment for e-transactions to foster trust, cooperation and collaboration among our constituents and the general cyber community in the Kingdom Geneva, Switzerland, September 2014

4 This presentation will focus on the following security programs:
Presentation Outline This presentation will focus on the following security programs: National Information Security polices and procedures development framework for government agencies Critical infrastructure protection program National Threat Management program Geneva, Switzerland, September 2014

5 National Information Security Policies and Procedures
CITC has developed information security policies and procedures development framework for government agencies Assist the Government Agencies in Saudi Arabia in development of their customized information security policies and procedures in quick and effective manner The framework can also be used by other public and private sector organizations Geneva, Switzerland, September 2014

6 National Information Security Policies and Procedures
Government agencies must implement security polices and procedure to ensure: Confidentiality, Integrity, and Availability of information The framework allow agencies to develop their own policies internally to fit their needs rather than one size fits all methodology Geneva, Switzerland, September 2014

7 National Information Security Policies and Procedures
Multiple Information security international standards are considered during the preparation of the framework. The framework is prepared to comply with Saudi laws as listed below: Saudi Laws eTransaction Law eCrimes Law Geneva, Switzerland, September 2014

8 National Information Security Policies and Procedures
The framework also assists in: Planning and developing information security policies and procedures Selecting appropriate information security department placement option Implementing the developed information security policies and procedures Geneva, Switzerland, September 2014

9 National Information Security Policies and Procedures
Key components that will be used in rolling out the Government Agencies’ policies and procedures: Repository of Common Policies. Repository of System Specific Policies. Repository of Common Procedures. Information Security Department Placement Options. Sample Awareness Plan. Information Security Audit Process Geneva, Switzerland, September 2014

10 National Information Security Policies and Procedures
The framework contains a web based portal to help government agencies producing policies, procedures and other component of security program. CITC Organizes a one day workshop to explain the framework to government agencies and the usage of supporting tools Geneva, Switzerland, September 2014

11 Critical infrastructure protection program
Why? Increase on the number of DDoS attacks in the past two years Increase on the traffic volume that is used to attack government and private agencies Increase of dependency on the eServices such as e-government and e-banking services. Potential financial loss and impact on the markets Geneva, Switzerland, September 2014

12 Critical infrastructure protection program
The goal is to develop a program to protect critical infrastructure systems and networks from Distributed Denial of Services attacks (DDoS) Enhance cooperation and coordination between data service providers, internet service providers and critical infrastructure owners Implement DDoS protection centers and solutions Geneva, Switzerland, September 2014

13 Critical infrastructure protection program
Program plan Identify critical infrastructure owners in Saudi Arabia Identify defense strategy Identify constituents and their roles Developing protection policies and procedures including escalation procedures Periodic tests (response efficiency) Geneva, Switzerland, September 2014

14 Critical infrastructure protection program
DDoS Traffic passes through: ISP DSP Geneva, Switzerland, September 2014

15 Critical infrastructure protection program
Defense Strategy Geneva, Switzerland, September 2014

16 Critical infrastructure protection program
Defense Strategy Monitoring Teams (minimizing detection time) Establishing Scrubbing Centres Up-Stream internet provider agreements Rerouting traffic Filtering out or limiting internet protocols Geneva, Switzerland, September 2014

17 Critical infrastructure protection program
Defense Strategy Effective cooperation, communication and coordination between constituents Continues evaluation and testing Geneva, Switzerland, September 2014

18 Threat Management Program
The program is designed to mitigate several threats: Malware infection Billions of systems are infected with malware around the world Critical Vulnerabilities Many internet systems are vulnerable and can be used to launch attacks Compromised web site Do you know if your web site is compromised? Geneva, Switzerland, September 2014

19 Threat Management Program
Malware infection, easy !! Geneva, Switzerland, September 2014 Source: Mandiant Threat Report 2013

20 Threat Management Program
CITC/CERT-SA developed Threat Management System (TMS): Utilizing the information produced by security community around the world to identify threats related to Saudi IP addresses. Using google search API to detect compromised web site (e.g. keywords) Alerting registered constituents about the threats and remediation steps. Producing statistics about threats in Saudi Arabia Geneva, Switzerland, September 2014

21 Threat Management Program
Threat Management System (TMS): Government and private agencies must provide full contact information and IP addresses information to CITC/CERT-SA The system parse received reports automatically and generates alerts to government and private agencies The alert contains instructions for threat remediation The system is developed internally as a web based system Geneva, Switzerland, September 2014

22 Threat Management Program
Threat Management System (TMS): Threat information Report Infection Type Source & Destination IP Protocol Port Time stamp Geographical location Types of threats Viruses Denial of Service attack - DOS SPAM URL source Botnet Command & Controller Infected or suspicious URL Open recursive DNS Compromised web sites Geneva, Switzerland, September 2014

23 Threat Management Program
Alerting TMS Fetch Mail Account Process Result Information Sources correlate Analysis Normalize Data Base Match Geneva, Switzerland, September 2014

24 Conclusions and Recommendations
Today’s cyber threats and risks show a strong need for international organization to set the internet policies and regulations in an enhanced cooperation fashion where governments get together, agree and implement an international public policy to counter cyber threats and threats ICT Regulators can play major role to boost information security in the national level Organizations needs help to address information security issues Coordination, cooperation, and communication is key success to mitigate national information security threats Awareness is the foundation for information security Geneva, Switzerland, September 2014

Download ppt "(Geneva, Switzerland, September 2014)"

Similar presentations

Its a new digital world with new digital dangers….

Its a new digital world with new digital dangers….
Philippine Cybercrime Efforts

Philippine Cybercrime Efforts
International Telecommunication Union An Insight into BDT Programme 3 Marco Obiso ICT Applications and Cybersecurity Division Telecommunication Development.

International Telecommunication Union An Insight into BDT Programme 3 Marco Obiso ICT Applications and Cybersecurity Division Telecommunication Development.
Copyright © 2014 American Water Works Association Water Sector Approach to Process Control System Security.

Copyright © 2014 American Water Works Association Water Sector Approach to Process Control System Security.
Lynn Ray ISO Towson University Strategic Planning for IT Security Copyright Lynn Ray, 2007. This work is the intellectual property rights of the author.

Lynn Ray ISO Towson University Strategic Planning for IT Security Copyright Lynn Ray, This work is the intellectual property rights of the author.
Zombie or not to be: Trough the meshes of Botnets - Guillaume Lovet AVAR 2005 Tianjin, China.

Zombie or not to be: Trough the meshes of Botnets - Guillaume Lovet AVAR 2005 Tianjin, China.
DHS, National Cyber Security Division Overview

DHS, National Cyber Security Division Overview
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
1 Telstra in Confidence Managing Security for our Mobile Technology.

1 Telstra in Confidence Managing Security for our Mobile Technology.
Security Controls – What Works

Security Controls – What Works
Boost your network security with NETASQ Vulnerability Manager.

Boost your network security with NETASQ Vulnerability Manager.
PPA 573 – Emergency Management and Homeland Security Lecture 9b - Department of Homeland Security Strategic Plan.

PPA 573 – Emergency Management and Homeland Security Lecture 9b - Department of Homeland Security Strategic Plan.
Cyberspace and the Police Mamoru TAKAHASHI Head of Computer Forensic Center, Hi-tech Crime Technology Division National Police Agency, Japan.

Cyberspace and the Police Mamoru TAKAHASHI Head of Computer Forensic Center, Hi-tech Crime Technology Division National Police Agency, Japan.
© 2014 Level 3 Communications, LLC. All Rights Reserved. Proprietary and Confidential. Polycom event Security Briefing 12/03/14 Level 3 Managed Security.

© 2014 Level 3 Communications, LLC. All Rights Reserved. Proprietary and Confidential. Polycom event Security Briefing 12/03/14 Level 3 Managed Security.
Geneva, Switzerland, 17-18 November 2014 United Arab Emirates Experience Ahmad Alshamsi Manager Type Approval, UAE TRA Combating.

Geneva, Switzerland, November 2014 United Arab Emirates Experience Ahmad Alshamsi Manager Type Approval, UAE TRA Combating.
Geneva, Switzerland, 15-16 September 2014 Overview of Kenya’s Cybersecurity Framework Michael K. Katundu Director, Information Technology Communications.

Geneva, Switzerland, September 2014 Overview of Kenya’s Cybersecurity Framework Michael K. Katundu Director, Information Technology Communications.
Network and Systems Security Security Awareness, Risk Management, Policies and Network Architecture.

Network and Systems Security Security Awareness, Risk Management, Policies and Network Architecture.
Maintaining & Reviewing a Web Application’s Security By: Karen Baldacchino Date: 15 September 2012.

Maintaining & Reviewing a Web Application’s Security By: Karen Baldacchino Date: 15 September 2012.
Comptroller of the Currency Administrator of National Banks E- Security Risk Mitigation: A Supervisor’s Perspective Global Dialogue World Bank Group September.

Comptroller of the Currency Administrator of National Banks E- Security Risk Mitigation: A Supervisor’s Perspective Global Dialogue World Bank Group September.
Norman SecureSurf Protect your users when surfing the Internet.

Norman SecureSurf Protect your users when surfing the Internet.

Similar presentations

Ads by Google