Upload
truongdiep
View
219
Download
0
Embed Size (px)
Citation preview
Cyber incident prevention
Estonian way
Klaid MägiOslo - 2017
Estonian IT infrastructure
Reality and legacy
Is there any incidents?
Yes! How many do you need?
Tax declaration and return …mmmmmmmmmmmmmmmmmmmmmmmmmm
Wannacry
International cooperation/crime
www.first.org
Awareness raising
Cyber Situation Awareness
REPORTING
• Mandatory for .gov, vital service providers. For all others in voluntary basis;
NETWORK MONITORING
• Networks are monitored by CERT;
OSINT• OSINT from news, forums, social media etc.
PARTNERS• FIRST, TF CSIRT, TI, EU, NATO and other partners;
ANALYSIS • Regional threat and risk analysis;
Cyber Situation Awareness
• Cooperation
• Reporting
• Monitoring
• Scanning
• Helping
• Teaching
Beyond Regulatory Compliance
CISO’s
CISO Council
Vital Service Providers
CIIP Council
Cyber Security Advisor Board
R&D Council
IT Managers
System Administrator
Security Experts
Cyber Security Branch
• 10+ trainings /annually• 15+ guidance papers /annually• Regular formal and informal meetings
Community based approach
Awareness raising
• Press releases:Regular and ad-hoc (event/situation initiated)
• CampaignsDifferent target groups
• TrainingsFor IT professionals
• SeminarsBased by targets
CERT community building
• @All• Abuse/ISP• admin@gov• CERT-EE Symposium• Trainings