WannaCry Ransomware Attack from Romanian Police Perspective

2019 ◽  
Vol 8 (1) ◽  
pp. 65-72
Author(s):  
Ion PARASCHIVA
Keyword(s):  
Human Resources ◽  
Cyber Security ◽  
Security Policies ◽  
Technical Knowledge ◽  
Security Strategy ◽  
High Degree ◽  
General Success

The field of cyber security is evolving at an alert pace and requires constantly updated strategies, and from the IT specialists, extensive knowledge and experience. In addition to the technical knowledge regarding cyber security, IT specialists of the Romanian Police need to understand very well the nature of the activity carried out. It should be made aware that there is no valid general success recipe and that the development of security policies should start from analyzing the particularities of human resources. Once their activity is understood, a dedicated security strategy can be outlined, ensuring a high degree of security for the organization and the information held by it.

scholarly journals Creating and Implementing an Effective and Deterrent National Cyber Security Strategy

2020 ◽  
Vol 2020 ◽  
pp. 1-19
Author(s):  
Mustafa Senol ◽  
Ertugrul Karacuha
Keyword(s):  
Cyber Security ◽  
Integrated Approach ◽  
Basic Structure ◽  
Management Control ◽  
Cyber Attacks ◽  
Security Strategy ◽  
Security Issues ◽  
New Concepts ◽  
National Power ◽  
High Degree

This paper presents a new national cyber security strategy (NCSS) covering the deterrence perspective from creation to implementation. With the aim of responding to and ensuring cyber security effectively, studies on which pathways should be followed and what methods should be used to develop, create, and implement a NCSS are being conducted in Turkey, as in all countries. In this context, by explaining the importance of cyber power, the need for cyber power to be considered as one of the elements of national power and the importance of providing security against cyber attacks with deterrence by cyber power are discussed, while a new and integrated approach for the creation and implementation of a NCSS and an authoritarian organizational structure responsible for this strategy is proposed. It can be concluded that the proposed effective and deterrent NCSS model and approaches might help to efficiently and effectively handle these issues for better management, control, and auditing for cyber security issues; provide new concepts for cyber security issues supported by cyber power and deterrence on this issue in the world; introduce integrated approach to cyber security strategies and policies on the stages of developing and implementing a NCSS; bring a number of issues to support cyber security and defence in different perspectives; and achieve a high degree of success, especially in terms of effectiveness and existing deterrence strategies and action plans of basic structure, with the proposed approach. Finally, it is expected that the proposed strategy, steps, and suggestions might help to improve cyber security issues and national strategies in near future to secure national assessment more than ever with a powerful concept of deterrence. In addition, this approach, which has been put forward for effective implementation of cyber security by ensuring better management, control, and supervision, can be easily used by all other countries.

scholarly journals CYBER SECURITY STRATEGIES FOR HIGHER EDUCATION INSTITUTIONS

2021 ◽  
Vol XXVIII (4) ◽  
pp. 74-92
Author(s):  
Arina Alexei ◽  
Keyword(s):  
Higher Education ◽  
Cyber Security ◽  
Higher Education Institutions ◽  
Cost Effective ◽  
Cyber Attacks ◽  
Security Policies ◽  
Management Process ◽  
Security Strategy ◽  
Risk Management Process ◽  
Scientific Papers

Due to the large volume of data they manage, Higher Education Institutions (HEIs) are perfect targets for cyber attackers. University networks are open in design, decentralized and multi-user, making them vulnerable to cyber-attacks. The purpose of this research paper was to identify which is the recommended cyber security strategy and how comprehensive are these studies, within HEIs. The method proposed by Kitchenham was used, focused on the information community. Thus, the following results can be communicated: researchers recommend their own security strategies, because the standards analysed in the papers are not oriented on HEIs, and require important adjustments to be implemented. Most scientific papers do not describe risk management process. The implementation phases are also insufficiently analysed. The functions that the strategy addressed by HEIs should fulfill include identification, protection and detection. The validation methods used in the preimplementation and post-implementation phases are case studies and surveys. Most researchers recommend as final cyber security strategy IT Governance and security policies. The field of research has proved to be very interesting, the researches could contribute to the creation of a comprehensive cybersecurity strategy, focused on the specifics of HEIs, efficient, easy to implement and cost-effective.

Aligning Security Needs for Order in Cyberspace

2018 ◽  
Author(s):  
Myriam Dunn Cavelty
Keyword(s):  
Risk Management ◽  
Cyber Security ◽  
Major Part ◽  
Coercive Power ◽  
Strategic Actions ◽  
Threat Perceptions ◽  
Distributed Security ◽  
Considerable Resistance ◽  
Traditional Norms ◽  
High Degree

Due to heightened threat perceptions, states are currently expanding their coercive power in cyberspace. They attempt to reduce the risk of escalation in (cybered-)conflict through traditional norms building. At the same time, their strategic actions remain the biggest threat to stability. Cyber-exploitations are a major part of the problem, hindering the removal of known insecurities, thus reducing the effectiveness of any future order. At the same time, the forceful role that states aspire to play in cyber-security has led to questions of legitimacy. The security arrangements that emerged in the 1990s, focused on protection and risk management, had a high degree of legitimacy because they built on a pragmatic solution of distributed security provision. Unless a future order in cyberspace takes into account the interests of companies and consumers who shape this domain in peacetime, it will be met with considerable resistance, with high costs for all sides.

Hacking humanitarians: Defining the cyber perimeter and developing a cyber security strategy for international humanitarian organizations in digital transformation

2020 ◽  
Vol 102 (913) ◽  
pp. 367-387
Author(s):  
Massimo Marelli
Keyword(s):  
Cyber Security ◽  
Armed Conflict ◽  
New Technologies ◽  
International Committee ◽  
Digital Transformation ◽  
Red Cross ◽  
Digital Environment ◽  
Security Strategy ◽  
Humanitarian Action ◽  
Humanitarian Organizations

AbstractDigitalization and new technologies have an increasingly important role in today's humanitarian activities. As humanitarian organizations become more active in and reliant on new and digital technologies, they evolve from being simple bystanders to being fully fledged stakeholders in cyberspace, vulnerable to adverse cyber operations that could impact on their capacity to protect and assist people affected by armed conflict or other situations of violence.This shift makes it essential for humanitarian organizations to understand and properly map their resulting cyber perimeter. Humanitarian organizations can protect themselves and their activities by devising appropriate cyber strategies for the digital environment. Clearly defining the digital boundaries within which they carry out operations lays the groundwork for humanitarian organizations to develop a strategy to support and protect humanitarian action in the digital environment, channel available resources to where they are most needed, and understand the areas in which their operational dialogue and working modalities need to be adapted for cyberspace.The purpose of this article is to identify the unique problems facing international humanitarian organizations operating in cyberspace and to suggest ways to address them. More specifically, the article identifies the key elements that an international humanitarian organization should consider in developing a cyber security strategy. Throughout, the International Committee of the Red Cross and its specificities are used as an example to illustrate the problems identified and the possible ways to address them.

Wargaming in Cyber Security Education and Awareness Training

2019 ◽  
Vol 8 (1) ◽  
pp. 35-38
Author(s):  
Andreas HAGGMAN
Keyword(s):  
Cyber Security ◽  
Learning Opportunities ◽  
Learning Tools ◽  
Security Strategy ◽  
Powerful Learning ◽  
Security Training ◽  
Core Concepts ◽  
Education And Awareness ◽  
The Uk ◽  
High Engagement

This paper introduces readers to core concepts around cyber wargaming. Wargames can be powerful learning tools, but few wargames exist to teach players about cyber security. By way of highlighting possibilities in this space, the author has developed an original educational tabletop wargame based on the UK National Cyber Security Strategy and deployed the game to a variety of organisations to determine its pedagogic efficacy. Overall, it is found that the game was effective in generating high-engagement participation and clear learning opportunities. Furthermore, there are design lessons to be learned from existing games for those seeking to use wargames for cyber security training and education.

Sign in / Sign up

Export Citation Format

Share Document