7
PUBLISHED IN DECEMBER 2020 2020 REPORT Global Cyberseciurity Center for Development
PUBLISHED IN DECEMBER 2020
2020REPORT
Global Cyberseciurity Center for Development
About the Global Cybersecurity Center for Development (GCCD)
Joint seminar, Invitation-based training, CMM On-site workshop
Established in 2015 under KISA (Korea Internet & Security Agency)
Overview
Invitation-based Training
KISA has hosted the GCCD Invitation-based Training in Seoul since 2016 to provide practical knowledge delivered by experts in cybersecurity and offer an overview of the status of the real information security industry in Korea to our partners.
Due to the COVID-19 pandemic, KISA hosted the cybersecurity seminar on a non-contact basis in September 2020. The main theme of the 2020 GCCD online seminar was “Cybersecurity in the Post COVID-19 Era.” A total of 173 participants from 45 countries participated in the seminar. On the sidelines of the seminar, the 5th Annual Meeting of CAMP was also held.
Given the high level of interest in COVID-19, the GCCD presented cybersecurity issues and attack trends related to the pandemic and shared how Korea is currently responding to it with its ICT technologies during the seminar. In addition, to give an overview of Korea’s latest technologies in the field of cybersecurity, KISA introduced Korea’s outstanding technologies and companies in the regarding area. Participants were also given the opportunity to enjoy an online exhibition during the seminar.
< 2016-2020 GCCD Invitation-based Training>
Year Main Topic Participants Countries
2016- Information Security Policy Course - Cybersecurity Incident Response
35 23
2017- National Information Security Policy- Information Security Technical Response
30 23
2018- Demonstration of Various Types of Attacks- Exploring Korean Information Security Cluster in Pangyo and Korean SMEs
35 26
2019- National Cybersecurity Framework- Hands-On Exercise Regarding Cybersecurity Incident Response
36 27
2020 - Cybersecurity in the Post COVID-19 Era 173 45
GCCD Activities and Performance
Public officials in emerging
economies and our partners
To enhance the information security capacity of emerging economies
Taking a big leap forward
Since its inception in June 2015, the Global Cybersecurity Center for Development (GCCD) has strived to align and expand its programs according to the evolving demands of the cybersecurity environment. As part of our endeavor, we have hosted several cybersecurity capacity building seminars in various regions to provide practical information and share Korea’s experience in line with the needs of our local partners. Recently, two seminars were held in Costa Rica and Lao PDR, respectively. Additionally, we have hosted invitation-based trainings every year in collaboration with the CAMP Annual Meeting for participants from all over the world.
To strengthen the cybersecurity capacity of developing countries, we have maintained a trilateral cooperative partnership with the World Bank and Oxford University’s GCSCC. Together, we assess a country’s national cybersecurity level and provide training based on the assessment results. As of December 2020, the GCCD has provided two cybersecurity follow-up seminars customized for Serbia and the four Carribean islands. We will continue to expand our programs and partnerships and update each program to improve the quality of our future seminars.
We all have been fighting against a dreadful threat called COVID-19. It has led us to live in a more contactless life than ever before. The more we are exposed to the digital world, the more cyber threats we face each day. Effective response is the key to protecting our daily lives from potential cyber threats.
Global Cybersecurity Center for Development
2 | 3
The GCCD has collaborated with its partners by hosting joint cybersecurity seminars. We, at the GCCD, have made great efforts to provide cybersecurity capacity building programs tailored to the interests and needs of each partner.
In November 2020, the GCCD hosted a joint cybersecurity seminar in collaboration with the Arab ICT organization (AICTO), headquartered in Tunisia.
Up to 60 participants from AICTO attended the seminar held online. In the seminar, Director Mohamed Ben Amor of AICTO and Director Kwang-hee Choi of KISA extended a warm welcome to all of the participants. The GCCD introduced Korea’s cybersecurity governance, plan on fostering information security workforce, personal information and information security management system (ISMS-P) and cyber threat analysis & sharing system (C-TAS). Taking into consideration the needs of its partner, the GCCD also shared information on National PKI (NPKI), Apart from the seminar, KISA sent a report on NPKI to AICTO, which was shared with AICTO members in their SMART magazine.
Joint Seminar
<GCCD Joint Seminar Photos>
GCCD Joint Seminar in Lao PDR (2019) GCCD Joint Seminar in Serbia (2018)
GCCD Joint Seminar in Costa Rica with CABEI (2019)
GCCD-Arab ICT Organization Cybersecurity Joint Seminar (Online, 2020)
<2016-2020 GCCD Joint Seminars>
Year Country Main Topic Co-host
2016
Montenegro Critical Information Infrastructure Protection (CIIP)
Ministry for Information Society and Telecommunications (MIST)
Moldova Information Security Management System (ISMS)
Ministry of Informational Technologies and Communications (MITC)
Guatemala
Cybersecurity Incident Response
Ministerio de Gobernacion (MINGOB)
BoliviaMinisterio de Obras Publicas, Servicios y Vivienda, Autoridad de Regulación y Fiscalización de Telecomunicaciones y Transporte (ATT)
Indonesia Information Security Manpower Training and Cyber Crime Response Desk Cyberspace National (DCN)
2017 Ghana National Cybersecurity Framework Ministry of Communications (MoC)
2018 Serbia Cybersecurity Policy and CERT Operation Ministry of Interior (MoI)
2019Costa Rica Cybersecurity Strategy Development and
Incident Handling
Ministry of Science, Technology and Telecommunication (MICITT), Central American Bank for Economic Integration (CABEI)
Lao PDRCybersecurity Framework and Capacity Building
Ministry of Communications and Post (MPT), LaoCERT
2020Regional
OrganizationNPKI and Cybersecurity Arab ICT Organization(AICTO)
Global Cybersecurity Center for Development
4 | 5
The GCCD has been running the cybersecurity capacity building program in collaboration with the World Bank (WB) since 2016. Throughout the first co-project (2016-2018), we hosted the CMM On-site Workshops in five countries. In 2019, a new co-project (2019-2021) was launched to support our partners. Through the co-project, the GCCD intends to share practical experience and provide hands-on training.
<Collaboration between WB-KISA>
In November-December 2020, KISA and WB jointly held the 2nd and 3rd workshops online. As WB shared with KISA the results of the cybersecurity capacity review of Serbia as well as its interests in global cyber intelligence, KISA provided tailored CMM follow-up workshop based on the results of the CMM assessment on Serbia, which was conducted in October 2019. Through the CMM workshop, KISA shared the overall cybersecurity framework, including cyber threat intelligence trends and cyber threat intelligence application delivered by the CEO of a Korean information security SME, Naru Security and a professor, Hyungjon Kim of Seoul Women’s University, respectively. Furthermore, through the use of an online platform, the GCCD provided a hands-on training for the Serbian CERT team during the workshop. The training was arranged by one of the Korean information security companies. In the training, KISA implemented the Security Gym, a real-time and realistic attack and defense virtual training program, for the Serbian participants. The workshop was held for about three weeks from November 9 to 30.
The last workshop of the year was offered to four Caribbean islands, St. Vincent and Grenadines, Dominica, Grenada, and St. Lucia, starting from December 1. The GCCD shared details about Korea’s cybersecurity framework, critical infrastructure protection, policy trends in the information security industry, cyber crimes and new frauds through an online platform accessible 24/7.
Cybersecurity Capacity Maturity Model (CMM) On-site Workshop
Subject
Activities
World Bank
Identification of Beneficiary Countries
WB & Oxford Univ.
CMM Assessment and Dissemination
KISA GCCD
Delivery of Follow-up Workshop
World Bank
Activity Impact Assessment
STAGE STAGE 1 STAGE 2 STAGE 3 STAGE 4
Overall representation of the cybersecurity capacity in Serbia
<2016-2020 GCCD CMM On-site Workshops>
Year Country Main Topic Co-host2016 Kosovo CSIRT Operations Ministry of Economic Development (MED)
2017 Kyrgyzstan National Cybersecurity Framework State Committee of Information Technologies and Communications (SCITC)
2018
FYR of Macedonia Cybersecurity Incident Response and Analysis Case
Ministry of Information Society and Administration (MISA)
Bosnia and Herzegovina Cybersecurity Incident Response Ministry of Communications and Transportation
Albania CSIRT Operations and E-gov Security National Authority for Electronic Certification and Cybersecurity (AKCESK)
2019 Kosovo Cybersecurity Framework and Incident Response Ministry of Economic Development (MED)
2020Serbia Cybersecurity and Hands-On Exercise Republic Agency for Electronic Communications
and Postal Services (Ratel)Four Caribbean
IslandsNational Cybersecurity Framework and Activities in Korea
Dominica, Grenada, St. Lucia, St. Vincent and Grenadines
Online Workshop for Serbia (2020) Online Workshop Program for Serbia (2020)
Seminar in FYR of Macedonia (2018) Seminar in Kosovo (2019) Seminar with Serbia (2020)
<Local Press Releases on CMM Seminar>
Seminar in Kyrgyzstan (2017)
Global Cybersecurity Center for Development
6 | 7
In 2020, all of GCCD’s international cooperation activities were carried out on a non-contact basis due to the COVID-19 pandemic. The GCCD put much effort into sharing informative materials with global partners.
The GCCD delivered reports about security rules and guidance on specific issues in the field of cybersecurity, such as the Ransomware Response Guide, Security guide on Setting up and Operating a Remote Work Environment, and 2020 Information Security Practice Rules for Individuals/Companies. These materials are also uploaded on KISA’s English website. The GCCD Secretariat sent the reports to our partners via email throughout the year.
In writing the reports, valuable contributions were made by our global partners. The Central American Bank for Economic Integration (CABEI) provided support in publishing the Spanish version of the Security Guide on Setting up and Operating a Remote Work Environment, and the Arab ICT Organization (AICTO) took part in issuing the 2020 Information Security Practice Rules for Individuals in Arabic and French.
Thanks to such help from our partners, the GCCD was able to continuously provide informative contents regarding cybersecurity. We will do our best to keep sharing useful information to our partners in a timely and proactive manner.
GCCD Information Sharing
<GCCD Information Sharing Contents in 2020>
<GCCD Video Contents>
Case Study Main Activities
Analysis of Malware Using Machine Learning Korea Cyber Incident Response
Basic Learning Materials for Malicious App Analysis Cyber Security Big Data Center
Analysis of Big Data on Cybersecurity Critical Information Infrastructures Protection
Phishing Mail Attack Cases and How to Respond KISA’s Security Activities for SME’s Homepage
Furthermore, the GCCD created eight video contents on cybersecurity capacity building. Four of the most frequently inquired Korean cybersecurity policies and cybersecurity capacity building study cases were chosen, and then were created into online video contents as shown below. The videos will be available on a website run by KISA in 2021.
Global Cybersecurity Center for Development
8 | 9
GCCD History
• Established in June 2015• Joint seminars in Costa Rica, Peru, Mongolia, India, Vietnam• Invitation-based seminar in Seoul
- Invitation-based TrainingThe GCCD will continue to provide invitation-based training courses to support member countries’ capacities to respond to cyber incidents and establish cyber protection policies. These efforts not only strengthen individual countries but also contribute to broadening the overall understanding of cybersecurity. To this end, we have utilized internally developed curricula and training materials, and shared our hands-on knowledge with participants. Going forward, we will continue to update and improve our training content in line with the changes in the cybersecurity landscape. We look forward to inviting people from around the world to participate in future trainings in Korea.
- Joint Seminar The cybersecurity joint seminar will cover various themes requested by applicant countries that are interested in cooperating with the GCCD and KISA for cybersecurity capacity building. The GCCD will design a tailored program for each country based on the country’s requests and its level of expertise and knowledge. The GCCD delegation and experts will be determined according to the theme of each seminar. We will collaborate with co-host organizations and visit each country to share Korea’s experience in the field of cybersecurity.
- Global Cooperation and Information-Sharing With the aim of strengthening our partnership for knowledge sharing in the field of cybersecurity, we will continuously strive to build relationships based on trust and mutual understanding. Any form of cooperation, from bilateral meetings to MOU signings, will be welcomed as new opportunities to build constructive partnerships with trusted friends in the cybersecurity field.
- New Challenge The outbreak of COVID-19 led us to a new normal of non-face-to-face interaction. In light of the pandemic, all GCCD programs were held online in 2020, which was a first for the GCCD. As of now, no one is sure when the pandemic will end. What is certain, however, is that global cybersecurity cooperation has become more important than ever before. Remote and non-face-to-face activities continue to emerge on the Internet, and the more we utilize digital devices and the Internet, the more we are exposed to digital threats. The GCCD will continue to provide information and content online to help respond to these new challenges.
GCCD Outlook
2020
2019
2017
2015
2018
2016
• Joint Seminar with the AICTO (Arab ICT Organization)• GCCD Cybersecurity Online Seminar• CMM Workshop with Serbia and four Caribbean Islands
• Joint seminars in Costa Rica, Lao PDR• Invitation-based seminar in Seoul• CMM On-site workshop in Kosovo
• Joint seminar in Serbia• Invitation-based seminar in Seoul• CMM On-site workshop in Macedonia, Albania, Bosnia and Herzegovina
•Joint seminar in Ghana• Invitation-based seminar in Seoul• CMM On-site workshop in Kyrgyzstan
• Joint seminars in Montenegro, Moldova, Guatemala, Bolivia, Indonesia• CMM On-site workshop in Kosovo
Global Cybersecurity Center for Development
10 | 11
GCCD Website : https://www.kisa.or.kr/eng/mainactivities/internationalCooperation_01.jspGCCD Secretariat Email : [email protected]
