daniel p. bagge head of unit (nsa cze/ncsc) strategy and policy unit: current activities and future...

Daniel P. BaggeHead of Unit(NSA CZE/NCSC)

Strategy and Policy Unit:Current Activities and Future Tasks+ new NCSS (2015 - 2020)

Govern

me

nt

Cyber Security Council

National Security Authority

National Cyber

Security Centre

Governmental CERT

(GovCERT.CZ)

Strategy and Policy Unit

National CERT(CSIRT.CZ)

Ministry of Defence

Military CERT(CIRC Centre)

memorandum

TOP level

ORGANIZATIONAL FRAMEWORK

Strategy and Policy Unit + new NCSS --- 27th November 2014

CURRENT ACTIVITIESo Fulfilling international obligations

(ENISA, OSCE, EU, NATO, CCDCOE , CECSP, etc.)

o Presenting and promoting NCSC activities at both the national and international levels

o Participating in cyber security exercises

o Mapping and defining CII and IIS


CURRENT ACTIVITIES (cont'd)

o Giving strategy advice and policy analysis on cyber security issues

o Creating and updating strategic and policy documents

o Supporting GovCERT activities o Etc.


FUTURE ACTIVITIES (NCSS 2015-2020)

o Cyber security awareness / educational programmes

o R&D o Deeper cooperation with CII and IIS subjectso Risks and threats analysis o Legal and other support to Police (cybercrime) o Etc.


CURRENT NCSS (2012 – 2015)

- EVALUATIONo about to expireo main goals have already been met / ongoingo 2 milestones:

1. NCSC2. The Act on Cyber Security

o shift from elementary to more holistic/comprehensive approach


NEW NCSS (2015 – 2020)o NCSS drafted by NSA CZE and coordinated

with stakeholders (legal advisors, experts, relevant ministries, police, military and intelligence agencies, etc.).

o NCSS will be submitted to the National Security Council soon and later to the Government for approval.

o NCSS will be effective from JAN 15 and valid till 2020.


OUTLINE OF THE NCSSo Introduction

1) Visions (long-term vision, exceeds the timeframe of the NCSS)

2) Principles (basic principles which shall be followed by the State IOT ensure cyber security)

3) Challenges (specific challenges both for the Czech Republic and international environment)

4) Main goals (main strategic goals facing the challenges)o Implementation of NCSSo Annex (acronyms, glossary)o + Action Plan (being drafted, definition of its implementation by

the NSA CZE)


1) VISIONSo Smooth functioning of information societyo Raising cyber security knowledge and capabilities to face

the latest cyber security threatso Focus on security of industrial systems that are included in

critical information infrastructure, IOT get strong expertise and knowledge in this area

o Become a state with major position in cyber security both within its region and whole Europe

o Active assistance to alliance partners, fulfillment of commitments for the collective defense and support security in other countries of the world


2) PRINCIPLESo Protection of fundamental human rights,

freedom and democratic principleso Comprehensive cyber security approach based

on the principle of subsidiarity and cooperationo Confidence building and cooperation between

public, private sector and civil societyo Capacity development for ensuring cyber

security


3) CHALLENGESo The Czech Republic as a test bedo Insufficient cyber security protection of small

and medium enterpriseso Malware is increasingly sophisticatedo Botnets and DDoS/DoS attackso Increased cyber crimeo APTso Etc…


4) MAIN GOALSo Ensuring the efficiency and strengthening of existing structures,

processes and cooperation in the area of cyber securityo Effective international cooperationo National critical information infrastructure and important information

systems protectiono Cooperation with the private sectoro Research & Developmento Education support, awareness raising and development of the

information societyo Cybercrime: Promoting the development of capabilities of the Czech

Police to investigate and prosecute cybercrimeo Cyber security legal framework creation and active participation in the

European and international legislation development and implementation.


Daniel P. Bagge

Thank you for your attention!

e-mail: [email protected]

daniel p. bagge head of unit (nsa cze/ncsc) strategy and policy unit: current activities and future...

Documents