wiser: helping eu firms get smart about cyber security
TRANSCRIPT
WISER: Helping EU firms get smart about cyber security
Niccolò Zazzeri
Trust-IT Services, UK
WISER “WIDE-IMPACT CYBER SECURITY RISK FRAMEWORK”www.cyberwiser.eu @cyberwiser
Co-funded by the European CommissionHorizon 2020 – Grant # 653321
What is WISER?• What is WISER?
– WISER is a European collaborative Innovation Action that puts cyber-risk management at the very heart of good business practice.
– Started on June 1st 2015, WISER will provide a cyber-risk management framework able to assess, monitor and mitigate the risks in real-time, in multiple industries.
• Who stands to benefit?– SMEs
– Financial insurance
– Critical Infrastructure organisations or highly complex cyber systems
– Cyber secure, innovative smart energy providers
• Who is involved? Seven European Partners collaborating
Cybersecurity as a challenge
• Cyber criminals can exploit any organisation’s weaknesses, no matter the size– Nearly half of all cyber-attacks globally last year were committed against small businesses -
Symantec– Tesco Bank, Dropbox, LinkedIn, and Verizon were just some of the high-profile security breaches
this year, with the far-reaching impact of the Yahoo breach also grabbing the headlines in 2016.
• The World Economic Forum has listed cybercrimes as a top global risk, and warns that industrial-scale attacks are on the rise– Rise of Ransomware, where criminals encrypt data and ask for money to de-crypt it.– Upward trend of Distributed Denial of Service, which can bring down websites for hours.
• Every second, 12 people online become a victim of cybercrime, totalling more than 1 million victims around the world every day
No One Is Immune from an Attack
The unbalanced battle: lack of awareness• Direct impact:
– business interruption
– sensitive data loss
– loss of customers
• Indirect costs: – brand damage due to loss of trust
– reputation
– reduced ability to win new customers
• 2 out of 3 organisations don´t define and update their breach response plans to account for changing threat landscape
And many companies simply don´t have a clue about this.They are completely unaware of what is threatening them!
A stronger problem against a weak solutionStrong problem Weak solution
Cybercrime is a flourishing business
Cybercriminals are using ever more sophisticated methods
Cybercrime slows down the growth of the Digital Single Market
Cybercrime is a clear obstacle for European economies to strive
Cybercrime targets sensitive information and critical infrastructures
Cyber risk detection and assessment is usually a manual process
Cyber risk detection and assessment is mostly a process performed periodically.
Current approach is static and iterative
Cyber risk detection and assessment usually focus on the ICT side, not considering business or societal impact
No support for decision-making of mitigating measures
Where WISER sits in cyber security strategy development?
• STEP 1 - Acquire awareness through self-assessment of your cyber risks and vulnerabilities of your IT system.
• STEP 2 - Evaluate your exposure levels (€€€ + reputation) • STEP 3 - Evaluate cyber insurance.• STEP 4 - Develop a mitigation plan.• STEP 5 - Monitor in real-time.
SECURITY DESIGN & IMPLEMENTATION
CONTINUOUS RISK
MANAGEMENT
SECURITY ASSESSMENT
EVOLUTION
WISER PERIMETER
SECURITY SERVICES VALUE CHAIN
MITIGATION
WISER has a high level innovation potential and commits its resources also to create awareness & a global cybersecurity culture
WISER pragmatic vision for cybersecurityCyberWISER-Light – self-assessment of cyber risks and vulnerabilities in IT system.
•User-friendly service - suited to every type of organisation. •Especially good for time - and resource - constrained SMEs.
CyberWISER-Essential – Risk Platform as a Service (RPaaS) for self-assessment of exposure levels with continuous, real-time monitoring
•Standardised mitigation options•Societal impact evaluation•WISER team limited support
CyberWISER-Plus – RPaaS + Customised approach to cyber risk assessment
•Real time exposure calculation & monitoring•Mitigation cost benefit calculations•Deployment support & mitigation plan tailored to your organisation•WISER team full involvement
CyberWISER Light: free online service
• Part 1 – Risk Profiling Questionnaire– No need to be an IT expert or risk manager.
– Complete the questionnaire and download your personalised report
– Start defining your cyber strategy.
• Part 2 – Vulnerability Test– Helps prevent attacks before they damage your business.
– You have control from start to finish.
– Download your personalised report ranking your specific vulnerabilities.
Start using CyberWISER Light todayRegister on www.cyberwiser.eu
Need tech support or advice?Contact us at [email protected]
Want to get involved?Contact us at [email protected]
Thank you for your attention! Questions?
• Contact
Niccolò Zazzeri
Communication & web Marketing Specialist
Trust-IT Services, Ltd (UK)
@cyberwiserLinkedIn
Co-funded by the European CommissionHorizon 2020 – Grant # 653321