Upload File

security - osce

2
Cyber Security OSCE Mission to BiH (the Mission) engagement in the field of cyber security is focused on improving the capacity of BiH to respond to security threats emanating from cyberspace in line with its commitments as an OSCE participating State. A streamlined and comprehensive approach is taken, entailing a spectrum of support ranging from strategic to operational. These efforts involve support to development of a harmonized strategic cybersecurity framework, establishment of Computer Emergency Response Teams (CERTs), and capacity building to fight cybercrime. BiH’s commitments in cyber security Bosnia and Herzegovina (BiH) has committed to implementing OSCE commitments deriving from the OSCE Ministerial Council Decisions on Enhancing Efforts to Reduce the Risks of Conflict Stemming from the 1 Use of ICT and the agreed set of Confidence-Building 2 Measures (CBMs) to address ICT security in order to enhance predictability and transparency and reduce misperceptions and conflicts in the cyber domain. In light of the EU accession process, it also has expressed determination to apply measures for a high common level of security for network and information systems across the Union (NIS Directive [EU] 2016/1148 of the European Parliament and 3 of the Council ) and to fulfil the General Data Protection 4 Regulation (Regulation [EU] 2016/679). Furthermore, BiH aims to implement the Council of Europe (CoE) Convention on Cybercrime which serves as a guideline for any country developing national legislation and co-operation in combating cybercrime (i.e. the Budapest Convention). Unfortunately, BiH lacks an official and agreed strategic approach and framework for responding to cyber security threats. Although some strategies do partly address cyber security, BiH remains the only country in South-Eastern Europe without a national level cyber security strategy and CERT. Subpar co-ordination, an insufficiently harmonized approach, inadequate capacities, and the absence of a strategic vision remain issues of concern. Moreover, existing legislation remains to be fully harmonized with relevant EU acquis, and there is no overarching law on information security. 1 Available at https://www.osce.org/chairmanship/361561. 2 Available at https://www.osce.org/files/f/documents/d/a/227281.pdf. 3 Available at https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32016L1148&from=EN. 4 Available at https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32016R0679.

Upload: others

Post on 15-Oct-2021

9 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Security - OSCE

Cyber Security

OSCE Mission to BiH (the Mission) engagement in the field of cyber security is focused on improving the capacity of BiH to respond to security threats emanating from cyberspace in line with its commitments as an OSCE participating State. A streamlined and comprehensive approach is taken, entailing a spectrum of support ranging from strategic to operational. These efforts involve support to development of a harmonized strategic cybersecurity framework, establishment of Computer Emergency Response Teams (CERTs), and capacity building to fight cybercrime.

BiH’s commitments in cyber security

Bosnia and Herzegovina (BiH) has committed to implementing OSCE commitments deriving from the OSCE Ministerial Council Decisions on Enhancing

Efforts to Reduce the Risks of Conflict Stemming from the

1Use of ICT and the agreed set of Confidence-Building

2Measures (CBMs) to address ICT security in order to enhance predictability and transparency and reduce misperceptions

and conflicts in the cyber domain. In light of the EU accession process, it also has expressed determination to apply measures for a high common level of security for network and information systems across the Union (NIS Directive [EU] 2016/1148 of the European Parliament and

3of the Council ) and to fulfil the General Data Protection

4Regulation (Regulation [EU] 2016/679). Furthermore, BiH aims to implement the Council of Europe (CoE) Convention on Cybercrime which serves as a guideline for any country developing national legislation and co-operation in combating cybercrime (i.e. the Budapest Convention).

Unfortunately, BiH lacks an official and agreed strategic

approach and framework for responding to cyber security threats. Although some strategies do partly address cyber security, BiH remains the only country in South-Eastern Europe without a national level cyber security strategy and CERT. Subpar co-ordination, an insufficiently harmonized approach, inadequate capacities, and the absence of a strategic vision remain issues of concern. Moreover, existing legislation remains to be fully harmonized with relevant EU acquis, and there is no overarching law on information security.

1 Available at https://www.osce.org/chairmanship/361561.

2 Available at https://www.osce.org/files/f/documents/d/a/227281.pdf.

3 Available at https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32016L1148&from=EN.

4 Available at https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32016R0679.

Page 2: Security - OSCE

Follow OSCE Mission to BiH OSCE Mission to Bosnia and HerzegovinaFra Anđela Zvizdovića 1, UNITIC Tower A71000 SarajevoBosnia and Herzegovina

Office: +387 33 952 100Fax: +387 33 442 [email protected]/bih

The 2017 Decision of the BiH Council of Ministers on Designation of a CERT for Institutions of BiH still requires institutional operationalization. Also, key national priorities contained in the 2017-2022 Information Security Management Policy for BiH Institutions are yet to be operationalized – namely, the establishment of mechanisms to adequately respond to the contemporary challenges of the digital age.

All this leaves the public and private sectors in BiH, as well as individual citizens, highly vulnerable to the evolving threats from cyberspace - including to cyber-attacks and terrorism targeting critical infrastructure.

OSCE Mission to BiH efforts in addressing cyber security challenges

The Mission supported the initiation of development of a cyber security strategic framework in BiH and advocates with decision-makers to ensure its adoption and operationalization through strategies and action plans at various levels of authority. Assistance also aims to contribute to the establishment, capacity building, and

networking of CERTs as key protection and response mechanisms.

As a part of regional OSCE efforts, the Mission supports capacity building of law enforcement and criminal justice practitioners in BiH to effectively fight cybercrime and cyber-enabled crime.

In close co-operation with the EU Delegation and EU Special Representative in BiH, the Mission has established an international co-ordination group (Neretva Group) consisting of experts in cyber security. The Neretva Group has improved information sharing, co-operation and co-ordination in this crucial sphere.

Under Mission auspices, a diverse group of State and entity-level stakeholders developed and agreed the Guidelines for a Strategic Cybersecurity Framework in BiH5. This milestone document is based on EU national cyber security strategies good practices, operationalizes the OSCE ICT/cyber CBMs, and represents a basis for development of much-needed cyber security strategies and action plans. Overarching and comprehensive in nature, the Guidelines

address priority areas for enhancing cyber security in BiH in accordance with international standards.

The Mission established the Neretva Group on cyber security - an open-ended, multi-stakeholder and informal working group that brings together practitioners and experts from different sectors and from all levels of authority. The Group prioritizes and promotes the application of the Guidelines and multi-sectoral co-operation through an action-oriented approach. It is now also the generator of new cyber security initiatives, including development of e-learning courses, and information security for the public administration.

Steps forward

The Mission continues to support and facilitate the work of the Neretva Group as the foremost modality for joint engagement of representatives and experts from different levels of authority and sectors in BiH on advancing cyber security. This also involves the promotion of public-private partnerships as a way of bolstering the security of critical infrastructure, support to the work of the energy

sector sub-group, and greater inclusion of women and youth security experts, as a way of diversifying the expertise base and ensuring its sustainability.

Assistance is provided in operationalizing the Guidelines for a Strategic Cybersecurity Framework in BiH as a basis for the development of strategies - including for a framework strategy at the national level.

In view of the importance of CERTs in the prevention of and response to cyber-attacks, assistance is also provided to their establishment, capacity building and networking in BiH - particularly by facilitating peer support led by the CERT of Republika Srpska.Strategic focus is placed on supporting the implementation of OSCE confidence-building measures on ICT by BiH, to enhance interstate co-operation, transparency and stability, as well as to reduce the risk of conflict that stems from the use of ICT.

As part of regional OSCE activities, the Mission supports the capacity building of criminal justice practitioners to combat cybercrime and cyber-enabled crime through a train-the-trainer approach, and by supporting the development of host-country-owned training programmes.

5 Available at https://www.osce.org/files/f/documents/1/a/438383.pdf.


The OSCE and contemporary security challenges · The OSCE and contemporary security challenges: A collection of essays Author Group of authors Publisher Organization for security

OSCE ( Organization for security and co-operation in Europe )

Security Challenges and the OSCE co-operation practices in Kyrgyzstan | V.A.Korotenko

OSCE - Old

OSCE - · PDF file1994 renamed OSCE . 5 Forum for Security Co-operation Regular body for arms control What is characteristic of the OSCE? ... PowerPoint presentation template

Reviving the OSCE: European Security and the Ukraine Crisis

OSCE - Pune mock OSCE 2012

OSCE. Background about OSCE Background about OSCE Definition of OSCE Definition of OSCE Harden ’ s12 tips for organizing OSCE Harden ’ s12 tips for organizing

Peds OSCE this is pediatric osce book

SERBIA’S LEADERSHIP OF THE OSCE - Chris Smith · (1) SERBIA’S LEADERSHIP OF THE OSCE February 25, 2015 COMMISSION ON SECURITY AND COOPERATION IN EUROPE WASHINGTON, DC The hearing

OSCE Efforts to Enhance Identity Management · OSCE Efforts to Enhance Identity Management . Strengthening Aviation Security through Improved Traveller Identification. The OSCE: Forum

The Future of OSCE Field Operations (Options)osce-network.net/...Future_of_OSCE_Field_Operations... · The Future of OSCE Field Operations (Options) OSCE Network of Think Tanks and

Conference on Security and Cooperation in Europe and ...€¦ · Conference on Security and Cooperation in Europe and Organization for Security and Cooperation in Europe (OSCE) Commitments

The OSCE Medal - Orders and Medals Society of · PDF fileThe OSCE Medal Edward J. Emering The Organization for Security and Cooperation in Eu- rope (OSCE) is composed of 55 nations

Radiology OSCE

Project Management in the OSCE · 2018-01-31 · Project Management in the OSCE A Manual for Programme and Project Managers Organization for Security and Co-operation in Europe. ii

United Nations S Security Council 768365BFCF9B-6D27...entrusted to OSCE in Ukraine. We commend the vital contributions of the OSCE Special Monitoring Mission, the Trilateral Contact

Osce radiology

Surgical Osce

Osce 01ans

asi - OSCE

OSCE SAFETY OF JOURNALISTS GUIDEBOOKPart II. Ending impunity: an imperative for the OSCE Part III. The safety and security of journalists: the responsibility of OSCE partici-pating

OSCE: Pune Mock OSCE 2012 - Observed Station

Osce surgery

Handbook - OSCE

#49, SEPTEMBER 2018 POLICY BRIEF - osce …osce-academy.net/upload/file/PB49.pdf · egional ntegration as an Energy Security Strategy essons for entral sia fro Europe’s Efforts

IRU Contribution to the OSCE / UNECE Inland Transport Security Discussion Forum

UNITED NATIONS SECURITY COUNCIL RESOLUTION 1540 (2004) OSCE Forum for Security Cooperation Dialogue 20 May 2015 ROMÁN OYARZUN MARCHESI Chair United Nations

Religion and Security-Building in the OSCE Context€¦ · Religion and Security-Building in the OSCE Context 5 Executive Summary and Recommendations The OSCE, which already engages

Perspectives on European Security...Perspectives on European Security STETE YEARBOOK 2013 ThE FinniSh COmmiTTEE FOR EuROpEAn SECuRiTY Cover photo: OSCE Editing and layout Kati Lepojärvi

High-level International Conference “ Energy Security and Sustainability – the OSCE Perspective ”

The EU and the OSCE: Partners or Rivals in the European Security …aei.pitt.edu/79442/1/Mosser.pdf · 2016-09-12 · Organization for Security and Cooperation in Europe (OSCE) have

OSCE Focus - DCAF · FOREWORD – OSCE Focus Conference . Since the beginning of January, Switzerland has held the chairmanship of the Organization for Security and Co-operation in

THE FUTURE OF THE OSCE MEDITERRANEAN ... FUTURE OF THE OSCE MEDITERRANEAN PARTNERS FOR COOPERATION HEARING BEFORE THE COMMISSION ON SECURITY AND COOPERATION IN EUROPE ONE HUNDRED ELEVENTH

Osce cuckoos