National Cyber Security Strategy 2016 26th of April 2017, Athens - - PowerPoint PPT Presentation

national cyber security strategy 2016
SMART_READER_LITE
LIVE PREVIEW

National Cyber Security Strategy 2016 26th of April 2017, Athens - - PowerPoint PPT Presentation

Oct 07, 2023 318 likes •467 views

National Cyber Security Strategy 2016 26th of April 2017, Athens Samuel Rothenpieler, International Relations Advisor, Federal Offjce for Information Security (BSI) Mission Statement of the German Federal Offjce for Information Security (BSI)

slide-1
SLIDE 1

National Cyber Security Strategy 2016

26th of April 2017, Athens Samuel Rothenpieler, International Relations Advisor, Federal Offjce for Information Security (BSI)

slide-2
SLIDE 2

Samuel Rothenpieler | April.2017 | Silde 2

The BSI as the national cyber security authority shapes information security in digitisation

through

prevention, detection and reaction

for

government, business and society ! The BSI as the national cyber security authority shapes information security in digitisation

through

prevention, detection and reaction

for

government, business and society !

Mission Statement of the German Federal Offjce for Information Security (BSI)

slide-3
SLIDE 3

Samuel Rothenpieler | April.2017 | Slide 3

BSI

National e-Government Strategy (2010) National e-Government Strategy (2010) Information Infor

  • rmation
  • n

Security Securi urity

Federal Ministry

  • f the Interior

Federal Ministry for Economic Affairs & Energy Federal Ministry of Transport & Digital Infrastructure

Policy Framework

2011

Cyber Security Strategy for Germany 2016

slide-4
SLIDE 4

Samuel Rothenpieler | April.2017 | Slide 4

Cyber-Sicherheitsstrategie für Deutschland

2016

German CSS 2016 – Guiding principles (1/2)

  • The ability to act and sovereignty of Germany needs to be

maintained in the age of digitisation.

  • Future-oriented cyber security policy enables

to use the potentials and chances of digitisation being in the public interest,

to control the interrelated risks.

slide-5
SLIDE 5

Samuel Rothenpieler | April.2017 | Slide 5

  • Strategic framework for all activities of the Federal Government w.r.t.

cyber secruity

  • Collaboration between state, economy, science and society
  • Collaboration between Bund-Länder
  • Close European and international coordination of policies/measures due to

cross-border effects and interdependencies

German CSS 2016 – Guiding principles (2/2)

slide-6
SLIDE 6

Samuel Rothenpieler | April.2017 | Silde 6

German CSS 2016 - Fields of Actions

  • 1. Sicheres und selbstbestimmtes

Handeln in einer digitalisierten Umgebung

  • 2. Gemeinsamer Auftrag von Staat

und Wirtschaft

  • 3. Leistungsfähige und nachhaltige

gesamtgesellschaftliche Cyber- Sicherheitsarchitektur

  • 4. Aktive Positionierung Deutsch-

lands in der europäischen und in- ternationalen Cyber-Sicherheits- politik

  • 1. Safe and self-determined

action in a digitized environment

  • 2. Joint effort of

government and industry

  • 3. Powerful and sustainable

Cyber Security architecture at national level

  • 4. Active positioning of GE in

European and international Cyber Security policy discussion

Cyber-Sicherheitsstrategie für Deutschland

2016

30 measures to improve CS

slide-7
SLIDE 7

Samuel Rothenpieler | April.2017 | Silde 7

Action fjeld 1: Safe and self-determined action in a digitized environment

a) Promoting digital literacy among all users, awareness raising b) Creating conditions for secure electronic communication and web services c) Secure e-Idendities d) Strengthening certifjcation and approval – introduction of an IT security „quality label“ e) Make the digitization process secure f) Promoting IT security research

Cyber-Sicherheitsstrategie für Deutschland

2016

slide-8
SLIDE 8

Samuel Rothenpieler | April.2017 | Silde 8

Action fjeld 2: Joint effort of government and economy

a) Securing Critical Infrastructures (IT security law, est. 2015) b) Protecting businesses in Germany c) Strengthening the domestic IT security industry d) Cooperating with providers e) Involving IT security service providers f) Creating a platform for trustful information exchange

Cyber-Sicherheitsstrategie für Deutschland

2016

slide-9
SLIDE 9

Samuel Rothenpieler | April.2017 | Silde 9

Action fjeld 3: Powerful and sustainable CS architecture at national level

a) Further development of the National Cyber Response Centre b) Strengthening of on-site analysis and response capacities c) Increasing law enforcement in cyber space d) Effectively fjghting cyber espionage and cyber sabotage e) Early warning system against cyber attacks from abroad f) Foundation of the central offjce for IT (ZITiS) g) Strengthening the defence dimension of cyber security h) Strengthening the CERT structures in Germany i) Protecting the Federal Administration j) Close cooperation between federal and state level (Bund-Länder) k) Making use of resources, HR: recruitment & development

Cyber-Sicherheitsstrategie für Deutschland

2016

slide-10
SLIDE 10

Samuel Rothenpieler | April.2017 | Silde 10

In progress (1/2): Foundation of a central offjce for IT (ZITiS)

  • . Encryption is a central issue of our time („The Crypto Debate“) →

relevant in terrorist cases, criminal offences and prosecution

  • . New government organisation
  • . During 2017 it will be est. around Munich → up to 400 staff
  • . Central service provider to security agencies, without operational

mandate

  • . Tasks

Digital forensics

Telecommunication surveillance

Crypto analysis

Big data analysis and fjght against crimes, counter espionage

R&D of methods, products, tools and strategies for security agencies

slide-11
SLIDE 11

Samuel Rothenpieler | April.2017 | Silde 11

In progress (2/2): Creation of MIRTs at BSI

  • . Inspired by hack on the German Bundestag → to create

capacities to quickly respond to ongoing threats with clear provisions/responsibilities → on demand/mandatory

  • . MIRT – Mobile incident response teams
  • . Capacities for reaction and analysis on request (federal

institutions but also critical infrastructures, if pub. interest)

  • . Up to 67 staff
  • . Coordinated by National Cyber Response Center
  • . „Cyber-Feuerwehr“ → involve industry actors as pendants
  • . QRF + MCT at Federal Criminal Police and domestic

intelligence service

slide-12
SLIDE 12

Samuel Rothenpieler | April.2017 | Silde 12

Action fjeld 4: Active positioning of Germany in European and international CS policy discussion

a) Actively shaping an effective European CS policy b) Enhancing the NATO Cyber Defence Policy c) Playing an active part in shaping CS internationally d) Bilateral and regional support & cooperation for cyber capacity building e) Strenghtening international law enforcement

Cyber-Sicherheitsstrategie für Deutschland

2016

slide-13
SLIDE 13

Samuel Rothenpieler | April.2017 | Silde 13

Highlights & impacts on BSI

  • . National Cyber Response Center will be further developed to play a role in cyber crises situations
  • . More active role for the national Cyber Security Council
  • . Implementation of MIRTs – Mobile Incident Response Teams (MIRTs)

To be more supportive to government, but also operators of essential services

More „powers“ and competences to BSI

  • . Creation of an IT Security Label – make IT security more transparent to the user
  • . Use of cryptotechniques should be supported
  • . Detection: sensor systems for detecting anomalies in provider networks
  • . Defense: Cooperation platform for state and economy
slide-14
SLIDE 14

Contact

Samuel Rothenpieler | April.2017 | Slide 14

Thank you ! Questions ?

  • Mr. Samuel ROTHENPIELER

International Relations samuel.rothenpieler@bsi.bund.de Bundesamt für Sicherheit in der Informationstechnik (BSI) Godesberger Allee 185-189 53175 Bonn www.bsi.bund.de