L'agència ENISA (European Network and Information Security Agency, Xarxa Europea d'Informació i Seguretat) acaba de publicar l'informe «On National and International Cyber Security Exercicses» (PDF i resum executiu) on es recull el resultat de l'enquesta realitzada a diversos organismes internacionals, públics i privats, sobre exercicis de ciberseguretat. L'informe recull informació de 84 països, dels quals 22 són europeus, amb informació del període comprès entre els anys 2002 i 2012.
ENISA examined 85 exercises covering the period between 2002 and 2012. In total, 84 countries worldwide participated in the multinational exercises analysed in this report. A total of 22 European countries conducted in national cyber-exercises.
The main findings in this research include:
- The number of cyber exercises has increased in recent years (71% took place in between 2010–2012). The reasons for this increase are the overall policy context that supports and boosts cyber exercises, the increased emphasis given by the EU Member States to cyber exercises, and the increasing threat of (cross-border) cyber incidents and attacks.
- Cyber crisis cross border cooperation efforts are continuously developing. Cyber security is an urgent matter which receives increasingly more attention in European countries.
- Public–private partnerships during cyber exercises are essential due to private sector ownership of most critical information infrastructures. There is a need to intensify public–private cooperation in cyber exercises.
- More attention should be paid to developing exercise management tools which can support exercise execution and preparation.
- The use of methodological planning, monitoring and evaluation is crucial for effective exercises.
- There is broad consensus that cyber exercises help to enhance the preparedness, responsiveness and knowledge of stakeholders in responding to cyber incidents.
The report concludes with seven recommendations for stakeholders in the global cyber exercises area, which aim to increase the number and quality of cyber exercises. The main recommendations are:
- Establish a more integrated global cyber exercise community;
- Ensure the exchange of good practices on cyber exercises, including public–private cooperation;
- Support the development of exercise management tools to support exercise planning, execution and evaluation;
- Aim for more complex cyber exercises on an inter-sectoral, international and European level;
- Enhance preparedness by including exercises in the lifecycle of Cyber Crisis Contingency Plans;
- Update the good practices for national exercises and initiate a good practice guide for multinational exercises;
- Develop feedback mechanisms for ensuring that lessons learned from cyber exercises are implemented resulting in enhanced cyber crisis preparation.