Strengthening Europe’s Cyber Resilience System & Fostering a Competitive and Innovative Cybersecurity Industry – COM(2016) 410: Malta Perspective MEUSAC Meeting, Valletta Dr. Keith Cilia-Debono 13th March, 2017
Cyberspace : Prelude • Backbone of digital society and economic growth • Related security incidents : – Increasing at an alarming pace – Disrupt supply of essential services e.g. Telephony, energy, health – Undermine trust in digital services and products • 22% of EU citizens have full trust in digital companies e.g social networking sites, e-mail services • 38% of EU citizens are confident about online cross-border (intra- EU) purchasing – Compromise of data which may be sensitive – Financial losses • https://ec.europa.eu/digital-single-market/en/news/have-your-say-how-boost-europes-cybersecurity-industry • Consumer Attitudes towards Cross-Border Trade and Consumer Protection – Summary Flash Eurobarometer 397 : Sept 2015
Cybersecurity Progress: Prelude • Cyber Security Strategy of the EU (2013) • Network & Information Security (NIS) Directive – Adopted 06 July 2016 “ Comprehensive piece of cybersecurity legislation” ...“Fundamental building block for work in the Digital Single Market” Andrus Ansip EC for Digital Single Market Chapter 1 (General Provisions) Art. 1 – – stipulates need for National Cyber Security Strategy....
Malta Context: National Cyber Security Strategy (NCSS) • Launched September 2016 http://ncss.gov.mt/en/Pages/Main.aspx • In line with NIS Directive
Malta Context: NCSS Six Goals with measures 1. Establish Goverance Framework – National CSIRT , Incident management , Risk Management, Public Sector information Security Framework, Data Classification, 2. Combat Cybercrime 3. Strengthen National Cyber Defence – National security, Collective Sharing of information , legislation review, National Cyber Simulation Exercises 4. Secure Cyberspace – Regulation and voluntary self commitment; interoperable & secure standards, online public services , support to private sector 5. Cybersecurity Awareness and Education – Education and training (national and public sector), cyber centre of excellence, R&D, cyber hygiene, National Awareness 6. National and International Cooperation
Malta context: NCSS Implementation • Governance (Strategic) – Ministry for Competitiveness and Digital, Maritime and Service Economy (Chair) – Malta Information Technology Agency – Critical Infrastructure Protection Directorate – Malta Communications Authority – Ministry for Home Affairs and National Security • Malta Police Force • Armed Forces of Malta – Cabinet Office
Malta Context: NCSS Implementation Approach • Lead and Coordinator : Ministry for Competitiveness and Digital, Maritime and Service Economy • Executive role : MITA reporting to Steering Committee • Lead Implementors : Ministries • Instrument : Roadmap: Action item, Lead, Other Actor(s), Timeframe, Budgets, Progress
Malta context: Other relevant activities • NIS Directive transposition into local law by 2018 – Lead: Critical Infrastructure Protection Directorate (CIPD) – OPM • Horizontal Working Party (HWP) – Cyber issues – Chair as part of the Presidency of the Council of the EU role: (January-June 2017) – Lead: MITA
Proposed Measures in COM 410 1. Strengthen cooperation across Europe – Better cross-border and cross-sector cooperation and faster information sharing • Malta: NCSS 2. Support the single market for cybersecurity products and services in the EU – Consider certification scheme to boost trust and security – Access to finance for SMEs 3. Contractual Public-Private Partnership – Mobilising public and private resources to boost the cybersecurity industry
COM 1 Strengthen Cooperation across Europe a) Making the most of NIS cooperation mechanisms and moving towards ENISA 2.0 – EU level: • Cooperation Group for strategic cooperation among MS • Cooperation Blueprint to handle large-scale cyber incidents • Information hub to support exchange of information between EU bodies – faciliate knowledge and expertise – supported by ENISA, CERT-EU and Joint Research Centre • High level advisory group (EU level) – NCSS Goals on governance and on cooperation – HWP for Cyber Issues ensuring follow up of developments by EC as appropriate
COM 1 Strengthen Cooperation across Europe b) Increased efforts in education, training & exercises • EC aims to work in close cooperation with MS, ENISA , EEAS, Europol, and others to establish a cyber security platform • Malta – NCSS proposed action items related to education and awareness - Lead : MITA on Cyber Awareness not necessarily directly related) (next slide) • Malta – HWP on Cyber issues – focus area on cyber awareness to EU citizens and SMEs • Malta – NCSS proposed action item on national cyber simulation exercises.
Malta Context: National Cyber Awareness • Launch of Two year Campaign: – January 2017 – December 2018 – Lead: MITA – Two Phases: – General (January 2017 / February 2017) – Focussed (March 2017 onwards) www.cybersecurity.gov.mt CyberSecureMT
Malta Context: National Cyber Awareness • General – – Theme: What is Cyber Security? – Coverage: TV, Radio,Newspaper articles, Website and FB • Focussed – Target audiences : • Students and Youths • Children and parents/guardians • Adults – including the Elderly • SMEs – Content and coverage specific to each audience; interactive sessions included
COM 1 Strengthen Cooperation across Europe c) Addressing inter-sectoral dependencies and key public network infrastructure resilience – Malta - NCSS Goal on establishing governance framework – establishing coordination structures , coordinate protection of national critical information infrastructure, national cyber risk assessment. – Malta - NCSS calls for establishment of a collective approach for sharing cyber security knowledge and intelligence
COM 2 Support single market for cybersecurity products and services Action items ( aim to strengthen an EU cyber security industry, support related vendor SMEs in investments & in international market development ) a) Certification and labelling b) Scaling up cybersecurity investment and supporting SMEs – Malta - NCSS calls for promoting robust levels of cyber security in online public services • Security and privacy in design of ICT products and services for Government – Malta – HWP on Cyber issues ensuring follow up on roadmap on European ICT security certification framework proposal
COM 3 - Contractual Public Private Partnership • Cybersecurity cPPP – Supported by European Cyber Security Organisation ESCO – Launched in 2016; it is now operational – Aims to • Mobilise resources under Horizon 2020- EU R&I Framework programme • Help turn EU cybersecurity research into products / services • Build trust among users, businesses, public administrations • Define minimum common digital security and privacy requirements across different sectors • EC to ensure its coordination with sectoral strategies, Horizon 2020 instruments, other PPPs – Launch of Horizon 2020 calls for proposals related to Cybersecurity cPPP – early 2017
Thank You
Recommend
More recommend