REGIONAL COOPERATION
A national cybersecurity system starts with the regions. Its foundation is the cooperation of government, business and university entities to build resilience and security against cyber threats.
In this regard, joint action by universities of technology is crucial. AGH University of Science and Technology, Jagiellonian University, Krakow University of Technology, Krakow University of Agriculture and Krakow University of Economics have signed an agreement on cooperation in the field of cyber security. The overarching goal of the agreement is to create a platform for cooperation and knowledge exchange in the field of network and ICT system security in the Małopolska region, as well as to mutually support activities aimed at protecting data that is collected for the development of human capital, industry or agriculture.
Through this cooperation, it is possible not only to transfer knowledge and good practices, but also to jointly create infrastructure for network and system security - such as Security Operation Centers (SOCs).
The digital services provided by local governments and the data they process are exposed to several cyber threats. These include targeted attacks including increasingly severe data encryption attacks, espionage and accidental data loss.
Regardless of the intentions of the perpetrators and the complexity of the incident, all of them have the potential to disrupt the operations of government offices, companies and institutions, while exposing them to financial and reputational losses. In addition - and importantly because of the ongoing war in Ukraine - they can have negative consequences for national security.
Equally important is building public awareness - sensitizing residents to emergencies, and raising competencies on how to avoid threats and respond properly when they occur.
That's why CC AGH works with universities, local governments, institutions and companies in the region, offering advice, training, innovation development and technology mentoring, as well as support from AGH engineers and cyber security specialists. CC AGH also engages in educational activities and strengthening awareness of cyber threats among residents and supports the building of cyber security cadres in Małopolska.
INTERNATIONAL COOPERATION
n 2020, the impact of cybercrime will cost the global economy €5.5 trillion - twice as much as in 2015. Russia's aggression against Ukraine has changed and intensified the threat landscape in Europe. The conflict has resulted in the activation of cybercrime groups, including those supported by Russia and its dependent states. This has increased cyberattacks, particularly against countries on NATO's eastern flank. The European Union and NATO have long been undertaking several cyber-security initiatives, which include the activities of responsible institutions (such as the European Union Cyber Agency - ENISA), cyber-security policies (including the NATO Cyber Defense Policy, NATO Cyber Defense Pledge, EU Policy on Cyber Defense), regulations (such as the NIS and NIS2 directives) and specific recommendations.
However, effective building of cyber resilience cannot succeed without international cooperation. This is reflected both in agreements, such as the NATO Industry Cyber Partnership, as well as in many grant programs for the creation of project consortia and cross-sector partnerships for strengthening cyber security. Universities provide an ideal environment for the transfer of knowledge and capabilities, as well as the creation of cyber security hubs or gas pedals - connecting different sectors, centers of research, innovation and services. AGH pursues this mission through, among other things, the international activities of the Cyber Security Center, including participation in the SOCCER project consortium, of which AGH is a leader. The project aims to develop and implement SOC capabilities for the academic sector.
The European Union's cyberspace defense policy highlights the need to create new and strengthen existing information-sharing networks, platforms for cooperation and tools that contribute to building the collective capacity of member states and the Union as a whole in the field of cyber resilience. It emphasizes the role of cooperation between EU and national institutions, international organizations such as NATO, third parties and the military and civilian sectors.
One of the programs promoting this cooperation is DIANA ⎯ NATO's Defense Innovation Accelerator. DIANA provides a unique opportunity for researchers, innovators and start-ups working on new and groundbreaking "deep tech" (deep tech) solutions, including cyber security and information security technologies, in collaboration with defense sector entities.
NATIONAL COOPERATION
The national cyber security system designed by the National Cyber Security System Law aims to ensure digital security at the national level, in particular:
- uninterrupted provision of key services and digital services,
- achieving a sufficiently high level of security for the ICT systems used to provide these services.
The system under construction includes key service operators (including those in the energy, transportation, health and banking sectors), digital service providers, national-level CSIRT (Computer Security Incident Response Team) teams, sectoral cyber security teams, cyber security service providers and cyber security authorities.
Cyber-security requirements have also been extended to digital service providers, namely online trading platforms, cloud computing services and search engines. With the amendment of the law in 2021, entities such as universities, the Office of the Financial Supervisory Commission and entities providing SOC services to Key Service Providers (SSOs) were also included in the national cyber security system.
The number of cyber threats, particularly to Poland's critical infrastructure, has increased significantly since Russia attacked Ukraine in 2022. The country is still at the third alert level of CRP (CHARLIE-CRP). i.e. an increased and predictable threat of cyber-terrorism. In the face of these challenges, the importance of Polish cyber defense technologies is growing.
AGH's support for national cyber security system entities may include training and courses, consulting, knowledge and capability sharing, project partnerships, and in the future, SOC services and a cyber training ground environment.
INDUSTRY COLLABORATION
In the face of increasingly sophisticated and complex cyber threats, industry cooperation has become a key element in effectively protecting against cyberattacks and other forms of cybercrime. It enables both the development of the cybersecurity industry, the training of human resources and joint efforts to detect cyberattacks, create databases of threat information and develop effective cyber defense systems. Organizations around the world, including European and Polish ones, realize that only through joint efforts and knowledge sharing can the rapidly developing threats in cyberspace be effectively countered.
European Cyber Security Organization - ECSO
In the European context, the European Cyber Security Organization (ECSO) is an excellent example of an initiative to strengthen cross-sector cooperation. ECSO provides a platform where industry, government and academia work together to create innovative solutions in the field of cyber security. By promoting research projects, innovation and technology transfer, ECSO supports the development of new defense tools and strategies. AGH through CC is a member of this organization.
Women4Cyber Poland
Increasing diversity in the cybersecurity field is also a crucial issue. Women4Cyber is a European initiative set up by ECSO to support women in the cyber security sector by developing their skills, building a support network and job base, as well as a mentoring and training system. Through such initiatives, the goal is not only to achieve gender equality but also to increase access to diverse perspectives and competencies, which can strengthen the sector's ability to counter attacks. CC AGH supports and works closely with the national branch of Women4Cyber Poland, established in April 2023. The inauguration of the chapter just took place at AGH.
Polish Cybersecurity Cluster #CyberMadeInPoland
The #CyberMadeInPoland cyber security cluster is an excellent example of industry cooperation within the country. The cluster brings together representatives of the Polish cyber industry, who, in cooperation with public administration and universities, aim to increase the competitiveness of the Polish cyber security sector through the development of innovations, implementation of trade missions, R&D cooperation, and promotion of expertise. CC AGH cooperates with the cluster based on a cooperation agreement, and CC Director Izabela Albrycht is the chairwoman of the Cluster Advisory Board.
Industry cooperation in cybersecurity is essential due to the growing threats and their complexity. Industry, government, and academia must join forces to effectively counter attacks, share threat information, and create new solutions. Initiatives such as ECSO, Women4Cyber, and national hubs and clusters like #CyberMadeInPoland are geared toward creating a more secure and resilient cyberspace.