Egyptian Computer Emergency Readiness Team (E (EG-CERT) Ahmed Tharwat | Sharm El Sheikh | December 2017
Outline • EG-CERT • EG-CERT Hierarchy • Operational Framework • Key Cybersecurity Threats • Capacity Building • International Cooperation • Challenges 2 2
EG-CERT • April 2009: EG-CERT Established. • Established with one Team. • July 2009: 24/7 Monitoring and incident response. • September 2009: Digital Forensic analysis service started. • April 2011: Malware analysis and reverse engineering. • March 2012: Full member in FIRST. • December 2012: Penetration testing service started. • November 2013: membership in OIC-CERT Steering Committee 3
EG-CERT Hierarchy Vice President Cybersecurity Executive manager Malware Analysis & Penetration Testing Incident Handling Director Forensics Analysis Director Reverse Engineering Director Director Malware Analysis & Incident Handling Dept. Penetration Testing Dept. Forensics Analysis Dept. Reverse Engineering Dept. 4
Operational Framework: EG-CERT EG-CERT currently has 24 full-time professionals and operates on a 24/7 basis. Expansion plans for EG-CERT have been approved by the board of the NTRA, and are being implemented. EG-CERT provides support to several entities in the ICT sector, the financial sector as well as the governmental sector EG-CERT provides both re-active as well as proactive services. 5
Key Cybersecurity Threats • Cyber Wars • Distributed Denial of Service Attacks (DDOS) • Infrastructure Manipulation • Data Breaches and Theft • Espionage • Ransomwares 6
Capacity Building • 179 professionals from 38 entities received advanced cybersecurity certification from SANS. • Participating in international Cyber Drills: – Asia Pacific - APCERT cyber drill (2012-2017) – Organization of Islamic Countries - OIC-CERT (2012-2017) – ITU/Impact Arab region cyber drill (2012-2015). 7
International Cooperation • Egypt is a member of the United Nations Group of Government Experts (UN GGE) on the Developments In The Field Of Information And Telecommunications. • Egypt has led the efforts to establish the ITU’s Council Working Group for Child Online Protection (CWG-COP) 8
International Cooperation • Signed cooperation agreements with: – Cybersecurity Malaysia (MYCERT) – South Korean CERT – US-CERT – Uganda – Team Cymru – IMPACT – Indian CERT. 9
International Cooperation • Has strong relationships with many CERTs in the Arab region: – Omani CERT – Tunisian CERT – Saudi CERT – AE-CERT – Q-CERT 10
International Cooperation • Hosted and Organized the 5 th Regional Cybersecurity Summit in cooperation with ITU-ARCC. • Hosted and Organized FIRST Regional Symposium for Arab and African Regions in cooperation with FIRST. 11
Egypt-Uganda Cybersecurity Relations 12 12
Challenges • Building Trust. • Better awareness. • Better readiness, resilience and contingency plans. • Better Skills. • Legislations. 13
Thank you Ahmed Tharwat | Sharm El Sheikh | December 2017
Recommend
More recommend
