The document summarizes the key points of the European Union's cybersecurity strategy, including establishing an open, safe, and secure cyberspace; boosting the EU economy by €500 billion annually by completing the digital single market; and achieving cyber resilience, reducing cybercrime, developing cyberdefense capabilities, and establishing international cyber policy. It outlines the strategy's five strategic objectives and roles for the European Union Agency for Network and Information Security (ENISA) in assisting member states, private sectors, and more.
Presentation on EU Directives Impacting Cyber Security for Information Securi...Brian Honan
A presentation I gave at the Information Security Ireland event where I highlighted upcoming EU legislation that will impact how organisations should think about cyber security and opportunities for security companies to take advantage of
Presentation on EU Directives Impacting Cyber Security for Information Securi...Brian Honan
A presentation I gave at the Information Security Ireland event where I highlighted upcoming EU legislation that will impact how organisations should think about cyber security and opportunities for security companies to take advantage of
Digital Transformation Strategy for Africa, 2020 - 2030 by AUEmmanuel Mumuni
The Digital Transformation Strategy aims to harness digital technologies and innovation to transform Africa's societies and economies to promote Africa's integration, generate inclusive economic growth, stimulate job creation, erase the digital divide and eradicate poverty to secure the benefits of digital revolution for socio-economic development. One of the objectives is to design and implement innovative financing models to digitally transform Africa with an incremental investment of $20 billion from 2020 – 2025, growing to $50 billion a year from 2026 – 2030.
ECIL: EU Cybersecurity Package and EU Certification FrameworkDeutsche Telekom AG
In September 2017 the EU Cybersecurity Package was proposed by the European Commission. The European cybersecurity industry leaders (ECIL) had delivered valuable advice and input to the EU’S CS strategy. In its latest recommendation to the EU Commission ECIL demands a more harmonized cyber policy across the Union. To secure Europe’s Digital Sovereignty and efficient Single Market oriented digital capabilities, Europe needs a holistic platform approach. Technology elements like 5G, Cloud, IoT together should be part of such a platform.
Summer School “Financial crime, corruption and money laundering: European and international perspectives”
The Research Institute for Transparency, Corruption and Financial Crime of the Faculty of Law - Aristotle University of Thessaloniki held its first summer school, “Financial crime, corruption and money laundering: European and international perspectives”, in Thessaloniki from 5 to 13 July 2017. Seventy nine (79) participants (students, researchers, lawyers and other professionals) from thirteen (13) countries (: Austria, Belgium, Brazil, Czech Republic, Cyprus, Germany, Greece, Italy, Lichtenstein, Netherlands, Poland, Slovenia, United Kingdom) attended the summer school’s courses, which were hosted at the Centre for International and European Economic Law and were taught in English.
The summer school’s sessions opened on Wednesday 5 July 2017. The participants were welcomed by the Institute’s Director M. Kaiafa-Gbandi, as well as the Deputy Rector of the Aristotle University of Thessaloniki, D. Klavanidou, and the Dean of the Law Faculty of the Aristotle University of Thessaloniki, G. Dellios. Distinguished Professors from different European Universities and post-doctoral researchers from the Faculty of Law of the Aristotle University of Thessaloniki taught at the summer school’s courses until 12 July 2017.
http://www.law.auth.gr/en/anti-corruption/5372
In August 2018, EIOPA published the report “Understanding Cyber Insurance - A Structured Dialogue with Insurance Groups”. The key finding was that the need for a deeper understanding of cyber risk presents the core challenge for the European cyber insurance industry.
In line with these findings and with EIOPA’s mandate to safeguard financial stability, this report aims at further enhancing our understanding of cyber risks for the insurance sector. While the first report was based on a qualitative survey focusing on cyber underwriting only, this report covers both cybersecurity challenges and cyber underwriting practices of insurers.
Singapore Asean cyber conflict and cybersecurity strategy - for Columbia Univ...Benjamin Ang
lecture for Columbia University - Cyber Conflict and Cybersecurity in East Asia course (Prof Adam Segal) on the challenges for cybersecurity in South East Asia, and ASEAN efforts to develop robust cyber norms
The European cyber security cPPP strategic research & innovation agendaEUBrasilCloudFORUM .
Presentation by Fabio Martinelli, CNR, National Research Council of Italy, representing the NECS project (European Network for Cybersecurity) at Cloudscape Brazil 2017
EDF2014: Marta Nagy-Rothengass, Head of Unit Data Value Chain, Directorate Ge...European Data Forum
PPP on Data & Executive Panel on Big Data, Introduction by Marta Nagy-Rothengass, Head of Unit Data Value Chain, Directorate General for Communications Networks, Content and Technology at the European Data Forum 2014, 20 March 2014 in Athens, Greece: Towards a Data Value Chain Partership in Europe.
Digital Transformation Strategy for Africa, 2020 - 2030 by AUEmmanuel Mumuni
The Digital Transformation Strategy aims to harness digital technologies and innovation to transform Africa's societies and economies to promote Africa's integration, generate inclusive economic growth, stimulate job creation, erase the digital divide and eradicate poverty to secure the benefits of digital revolution for socio-economic development. One of the objectives is to design and implement innovative financing models to digitally transform Africa with an incremental investment of $20 billion from 2020 – 2025, growing to $50 billion a year from 2026 – 2030.
ECIL: EU Cybersecurity Package and EU Certification FrameworkDeutsche Telekom AG
In September 2017 the EU Cybersecurity Package was proposed by the European Commission. The European cybersecurity industry leaders (ECIL) had delivered valuable advice and input to the EU’S CS strategy. In its latest recommendation to the EU Commission ECIL demands a more harmonized cyber policy across the Union. To secure Europe’s Digital Sovereignty and efficient Single Market oriented digital capabilities, Europe needs a holistic platform approach. Technology elements like 5G, Cloud, IoT together should be part of such a platform.
Summer School “Financial crime, corruption and money laundering: European and international perspectives”
The Research Institute for Transparency, Corruption and Financial Crime of the Faculty of Law - Aristotle University of Thessaloniki held its first summer school, “Financial crime, corruption and money laundering: European and international perspectives”, in Thessaloniki from 5 to 13 July 2017. Seventy nine (79) participants (students, researchers, lawyers and other professionals) from thirteen (13) countries (: Austria, Belgium, Brazil, Czech Republic, Cyprus, Germany, Greece, Italy, Lichtenstein, Netherlands, Poland, Slovenia, United Kingdom) attended the summer school’s courses, which were hosted at the Centre for International and European Economic Law and were taught in English.
The summer school’s sessions opened on Wednesday 5 July 2017. The participants were welcomed by the Institute’s Director M. Kaiafa-Gbandi, as well as the Deputy Rector of the Aristotle University of Thessaloniki, D. Klavanidou, and the Dean of the Law Faculty of the Aristotle University of Thessaloniki, G. Dellios. Distinguished Professors from different European Universities and post-doctoral researchers from the Faculty of Law of the Aristotle University of Thessaloniki taught at the summer school’s courses until 12 July 2017.
http://www.law.auth.gr/en/anti-corruption/5372
In August 2018, EIOPA published the report “Understanding Cyber Insurance - A Structured Dialogue with Insurance Groups”. The key finding was that the need for a deeper understanding of cyber risk presents the core challenge for the European cyber insurance industry.
In line with these findings and with EIOPA’s mandate to safeguard financial stability, this report aims at further enhancing our understanding of cyber risks for the insurance sector. While the first report was based on a qualitative survey focusing on cyber underwriting only, this report covers both cybersecurity challenges and cyber underwriting practices of insurers.
Singapore Asean cyber conflict and cybersecurity strategy - for Columbia Univ...Benjamin Ang
lecture for Columbia University - Cyber Conflict and Cybersecurity in East Asia course (Prof Adam Segal) on the challenges for cybersecurity in South East Asia, and ASEAN efforts to develop robust cyber norms
The European cyber security cPPP strategic research & innovation agendaEUBrasilCloudFORUM .
Presentation by Fabio Martinelli, CNR, National Research Council of Italy, representing the NECS project (European Network for Cybersecurity) at Cloudscape Brazil 2017
EDF2014: Marta Nagy-Rothengass, Head of Unit Data Value Chain, Directorate Ge...European Data Forum
PPP on Data & Executive Panel on Big Data, Introduction by Marta Nagy-Rothengass, Head of Unit Data Value Chain, Directorate General for Communications Networks, Content and Technology at the European Data Forum 2014, 20 March 2014 in Athens, Greece: Towards a Data Value Chain Partership in Europe.
The EU ministers responsible for the Information Society Policy on the occasion of the Informal Ministerial Meeting in Granada, on 19 April 2010, agreed on the key actions for the European Digital Agenda, based on the EU2020 strategy.
ENISA - EU strategies for cyber incident responseKevin Duffey
ENISA is the EU Agency for Network & Information Security. In this presentation, the Head of Stakeholder Relations shares lessons for CEOs from over 200 cyber simulations and other research conducted by ENISA.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other?
Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.
JMeter webinar - integration with InfluxDB and GrafanaRTTS
Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application.
In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics.
Length: 30 minutes
Session Overview
-------------------------------------------
During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana:
- What out-of-the-box solutions are available for real-time monitoring JMeter tests?
- What are the benefits of integrating InfluxDB and Grafana into the load testing stack?
- Which features are provided by Grafana?
- Demonstration of InfluxDB and Grafana using a practice web application
To view the webinar recording, go to:
https://www.rttsweb.com/jmeter-integration-webinar
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
European priorities in information security
1. European Union Agency for Network and Information Security www.enisa.europa.eu
European priorities in
information security
Graeme Cooper
Head of Public Affairs Unit, ENISA
12th International InfoSec and Data Storage Conference,
26th September 2013, Sheraton Hotel, Sofia, Bulgaria
2. European Union Agency for Network and Information Security www.enisa.europa.eu 2
EU Cubersecurity Strategy - essential points
“An Open, Safe and Secure Cyberspace”
• The norms, principles and values that the EU upholds
offline, should also apply online.
• Cyberspace must be correctly protected:
– Governments have a significant role in ensuring a free
and safe cyberspace.
– The private sector owns and operates significant parts
of cyberspace and has a leading role.
• Outside the EU, governments may misuse cyberspace for
surveillance and control.
– The EU can counter this situation by promoting freedom
online and ensuring respect of fundamental rights
online.
3. European Union Agency for Network and Information Security www.enisa.europa.eu 3
Economic Arguments
• By completing the Digital Single Market, Europe could boost its
GDP by almost €500 billion a year.
• For new connected technologies to take off citizens will need
trust and confidence.
– Currently, Europeans are not confident in their ability to use
the Internet for banking or purchases.
– They are also reluctant to disclose personal information.
– Across the EU, more than one in ten Internet users has been
a victim of online fraud.
• The EU economy is already affected by cybercrime activities,
economic espionage and state-sponsored activities are new
threats.
4. European Union Agency for Network and Information Security www.enisa.europa.eu 4
The Principles
• The strategy proposes key principles to guide the EU and
international approach:
– The EU's core values apply as much in the digital as in
the physical world.
– Fundamental rights, freedom of expression, personal
data and privacy should be protected.
– The Internet should be accessible to all citizens.
– The digital world must be subject to democratic and
efficient multi-stakeholder governance.
– Ensuring security is a shared responsibility.
5. European Union Agency for Network and Information Security www.enisa.europa.eu 5
Strategic Priorities
• The Five strategic objectives of the
strategy are as follows:
– Achieving cyber resilience
– Drastically reducing cybercrime
– Developing cyberdefence policy and capabilities related
to the Common Security and Defence Policy (CSDP)
– Developing the industrial and technological resources
for cybersecurity
– Establishing a coherent international cyberspace policy
for the European Union and promoting core EU values
ENISA explicitly called upon.
6. European Union Agency for Network and Information Security www.enisa.europa.eu 6
Achieving Cyber Resilience
• Introduces ENISA and explains the policy on NIS.
• Makes reference to articles 13a & 13b.
• Introduces the legislative proposal.
• Stresses the importance of the following:
– The establishment of a cybersecurity culture to enhance
business opportunities and competitiveness.
– Reporting significant incidents to the national NIS
competent authorities.
– Exchange of information between National NIS
competent authorities and other regulatory bodies.
– Recognises that exercises at EU level are essential to
stimulate cooperation among the MS and the private
sector.
7. European Union Agency for Network and Information Security www.enisa.europa.eu 7
The Legislative Proposal
• Key points:
– Will help establish common minimum requirements for
NIS at national level.
– Requires Member States to designate national
competent authorities for NIS, set up a competent CERT
and adopt a national NIS strategy and a national NIS
cooperation plan.
– Explains the role of the CERT EU regarding the EU
institutions, agencies and bodies.
– Requires the establishment of coordinated prevention,
detection, mitigation and response mechanisms.
– Requires the private sector to develop, at a technical
level, its own cyber resilience capacities and share best
practices across sectors.
8. European Union Agency for Network and Information Security www.enisa.europa.eu 8
Achieving Cyber Resilience (1 of 2)
• In the area of cyber resilience, the EC asks ENISA to:
– Assist the Member States in developing strong national
cyber resilience capabilities.
– Examine in 2013 the feasibility of Computer Security
Incident Response Team(s) for Industrial Control
Systems (ICS-CSIRTs) for the EU.
– Continue supporting the Member States and the EU
institutions in carrying out regular pan-European cyber
incident exercises.
9. European Union Agency for Network and Information Security www.enisa.europa.eu 9
Achieving Cyber Resilience (2 of 2)
• Specifically in terms of raising awareness, the Commission
asks ENISA to:
– Propose in 2013 a roadmap for a "Network and
Information Security driving licence".
– Support a cybersecurity championship in 2014, where
university students will compete in proposing NIS
solutions.
10. European Union Agency for Network and Information Security www.enisa.europa.eu 10
European Cybersecurity Month 2013
http://cybersecuritymonth.eu/
11. European Union Agency for Network and Information Security www.enisa.europa.eu 11
Developing Resources
• There is a risk that Europe becomes excessively dependent
on ICT and on security solutions developed outside its
frontiers.
• Hardware and software components used in critical
services and infrastructure must be trustworthy, secure
and guarantee the protection of personal data.
• In order to mitigate this risk, the strategy proposes two
action areas:
– Promoting a Single Market for cybersecurity products
– Fostering R&D investments and innovation
12. European Union Agency for Network and Information Security www.enisa.europa.eu 12
Single Market for Products
• A high level of security can only be ensured if all in the
value chain make security a priority.
• The strategy aims to increase cooperation and
transparency about security in ICT products:
– It calls for the establishment of a platform to identify
good cybersecurity practices across the value chain.
• COM will support the development of security standards
and assist with EU-wide voluntary certification schemes.
– Cloud computing and data protection.
– critical economic sectors - Industrial Control Systems,
energy and transport infrastructure.
13. European Union Agency for Network and Information Security www.enisa.europa.eu 13
R&D and Innovation
• R&D should fill technology gaps in ICT security and prepare
for the next generation of security.
• The Horizon 2020 Framework Programme for Research and
Innovation will be launched in 2014:
– There are specific objectives for trustworthy ICT as well
as for combating cyber-crime.
• Specific attention will be drawn at EU level to optimising
and better coordinating various funding programmes
14. European Union Agency for Network and Information Security www.enisa.europa.eu 14
Developing Resources
• The Commission asks ENISA to:
– Develop, in cooperation with relevant stakeholders,
technical guidelines and recommendations for the
adoption of NIS standards and good practices in the
public and private sectors.
– Collaborate with Europol to identify emerging trends
and needs in view of evolving cybercrime and
cybersecurity patterns so as to develop adequate digital
forensic tools and technologies.
15. European Union Agency for Network and Information Security www.enisa.europa.eu 15
Further Involvement of ENISA
• Although ENISA is not explicitly mentioned in the other
strategic priorities, there is clearly a role for the Agency.
• The EU Internal Security Strategy explains how ENISA
should collaborate with the recently established EU Cyber
Crime Centre.
• We have a role in creating a strong culture of NIS
throughout the EU.
• This can only be achieved by bringing communities
together and ensuring that information on NIS is shared
between such communities in an appropriate manner.
16. European Union Agency for Network and Information Security www.enisa.europa.eu 16
Concluding Remarks
• Complex ICT systems keep our economies running in key sectors
such as finance, health, energy, etc.
• Many business models are built on the uninterrupted availability
of the Internet and the smooth functioning of information
systems
• EC Recognises the importance of ICT in contributing to EUs
economic growth and its role as a critical resource for all
economic sectors
• ENISA is already well established and
contributing in many of the areas
described in the EU proposal for an
EU cybersecurity strategy.
17. www.enisa.europa.eu
Follow ENISA:
European Union Agency for Network and Information Security
Thank you.
Graeme Cooper, Head of Public Affairs Unit, ENISA
ENISA
European Union Agency for Network and Information Security
Science and Technology Park of Crete (ITE)
Vassilika Vouton, 700 13, Heraklion, Greece
Athens Office
1 Vass. Sofias & Meg. Alexandrou
Marousi 151 24, Athens, Greece