Author: ecsi

Between 18-21 and 25-28 March 2019, CERT-RO organizes two cyber security training sessions dedicated to the management staff from public institutions. The training takes place under the “Enhanced National Cyber Security Services and Capabilities for Interoperability (eCSI)” project.

The training aims to increase the awareness and ensure a minimal cyber security level in public institutions. The selected curricula allows the participation of both decision-makers in organizational departments that can play a role in ensuring security (eg human, legal, economic, procurement, etc.) as well as specialized staff.

The courses consist of both theoretical and practical exercises, activities combining perspectives such as managerial, organizational, institutional, legal, and providing an overview on cyber security activities.

The eCSI project, co-funded 75% through the CEF Telecom Program, aims to extend CERT-RO’s cyber security capabilities and services that the institution provides at national level. The implementation period of the project is 2 years (1 September 2017 – 30 August 2019).

CERT-RO has launched the eCSI project, “Enhanced National Cyber ​​Security Services and Capabilities for Interoperability – eCSI”

The Cyber ​​Security Incident Response Team (CERT-RO) has launched the “Enhanced National Cyber ​​Security Services and Capabilities for Interoperability (eCSI)” project, with a grant of approximately 1,000,000 EUR for the Innovation and Networks Executive Agency (INEA) EUR 869,000, 75% of the total eligible costs.

The purpose of the action is to create, maintain and expand cyber security capabilities of the National Cyber Security Response Team – CERT-RO, as well as the cyber security services it provides at national level. The action will enable CERT-RO to achieve a state of readiness that will facilitate equality-based participation in the European Union (EU) Co-operation Mechanisms and the IT security platform established by the Telecommunications Work Program of the Facility for Interconnection of Europe (CEF) 2015 (C (2015) 7381).

Thus, within the project, CERT-RO will launch sustainable operational services in real time and allow new uses and capabilities of cyber security services, processes and tools. The main services developed within CERT-RO are:

• The National Cybersecurity Services Platform (NCSP),
• Call-Center Cyber ​​Security available 24/7,
• The provision of a Malware Analysis and Investigation Laboratory,
• Organizing cyber security training for managers and IT specialists from public institutions,
• Promotion actions.

The measures will ensure the compliance of CERT-RO with the requirements of EU Directive 2016/1148 (NIS Directive) and will help to raise national awareness of technical and organizational requirements to achieve a high level of cyber security.

The project has a implementation duration of 2 years and will be completed in August 2019.

Connecting Europe Facility – The Telecom Program is a key instrument of the European Union to facilitate cross-border interactions between public administration, business and citizens through the introduction of digital infrastructure services and broadband networks. The budget of the program is 1.04 billion euros for the 2014-2020 period.

CERT-RO has organized a series of cyber security training sessions dedicated to managers and IT staff (network and system administrators) from public institutions in Romania, aiming to raise their awareness and cybersecurity knowledge. The activity was part of the project “Enhanced National Cyber ​​Security Services and Capabilities for Interoperability (eCSI)” having as main objective to contribute to the strengthening of the cybersecurity level of public institutions in Romania.

More than 40 managers from public institutions were trained during the two sessions dedicated to this category which took place between 18-21 and 25-28 of March 2019.

Subsequently, the dedicated sessions for IT staff (network and system administrators) took place between 1-4 and 9-11 April 2019 having 40 attendees.

The training sessions provided information on technical and organizational requirements to ensure a high level of common cyber security in accordance with the legal requirements (e.g. EU Directive 2016/1148 “NIS DIRECTIVE”, transposed by Law 362/2018 “On a high common level of security of networks and information systems”) and included topics such as risk management, protection methods, legal framework, cooperation in response to cyber security incidents as well as incident reporting, the classes comprising both theoretical and practical elements.

The eCSI project, co-funded 75% through the CEF Telecom Program, aims to extend CERT-RO’s cyber security capabilities and services that the institution provides at national level. The implementation period of the project is 2 years (1 September 2017 – 30 August 2019).

Yesterday, more than 90 specialists attended “The eCSI Project: Further Steps for Enhanced Cyber Security Services” where the current stage of the project “Enhanced National Cyber Security Services and Capabilities for Interoperability – eCSI”, implemented by CERT-RO was presented.

The event was marked by the presence of cyber security experts, decision-makers in the political environment and representatives of public and private companies.

Mr. Ionuţ-Andrei Valeriu, State Secretary within the Ministry of Communications and Information Society, highlighted the importance of the project for the Ministry of Communications, in light of the services developed by CERT-RO, meeting the requirements for increasing incident prevention and management capacity at national level, as well as participation in the EU-wide unitary ecosystem for incident response.

CERT-RO General Director, Mr. Catalin Aramă, pointed out the importance of cooperation in the field of cyber security, the role of Europe’s Interconnection Mechanism and the role of the NIS Directive, in providing a cyber security environment.

The main topics discussed at the conference were:

• CERT-RO mandate and the NIS Directive
• Presentation of the project current stage “Enhanced National Cyber Security Services and Capabilities for Interoperability – eCSI”
• National Cyber Security Platform Demo (NCSP)
• Cyber security courses dedicated to managers and technical staff in public institutions

Under this activity, the results of the action will be disseminated to cyber security stakeholders in Romania (such as cyber security authorities, public institutions, private organisations in different economy sectors, internet service providers, academic sector, mass media and citizens) and at the European level through various communication channels, conferences and workshops. The aim of the activity is to enhance cooperation at national and European level and to contribute to the development of the European cybersecurity information sharing community. This activity will also include the planning of the sustainability of the action. Dissemination and communications activities will include three conferences, two workshops and meetings; press releases; social media communication, CERT-RO website announcements; and promotional materials. Dissemination will target cyber security authorities, public institutions, private organisations in different economy sectors, internet service providers, academic sector, mass media and citizens.