Cyber Security

Definition

Cyber Security is a branch of computer technology known as information security as applied to computers and networks. The objective of computer security includes protection of information and property from theft, corruption, or natural disaster, while allowing the information and property to remain accessible and productive to its intended users. The term computer system security means the collective processes and mechanisms by which sensitive and valuable information and services are protected from publication, tampering or collapse by unauthorized activities or untrustworthy individuals and unplanned events respectively. The strategies and methodologies of computer security often differ from most other computer technologies because of its somewhat exlusive objective of preventing unwanted computer behavior instead of enabling wanted computer behavior.

Cyber Security Standards

Cyber security standards have been created recently because sensitive information is now frequently stored on computers that are attached to the Internet. Also many tasks that were once done by hand are carried out by computer; therefore there is a need for Information Assurance and security. Cyber security is important in order to guard against identity theft. Businesses also have a need for cyber security because they need to protect their trade secrets, proprietary information, and personally identifiable information of their customers or employees. The government also has the need to secure its information. One of the most widely used security standards today is ISO/IEC 27002 which started in 1995. This standard consists of two basic parts. BS 7799 part 1 and BS 7799 part 2 both of which were created by British Standards Institute (BSI). Recently this standard has become ISO 27001. The National Institute of Standards and Technology (NIST) has released several special publications addressing cyber security. Two of these special papers are very relevant to cyber security: the 800-12 titled “Computer Security Handbook” and 800-14 titled “Generally Accepted Principles and Practices for Securing Information Technology”.

Cyber Security in the Czech Republic

The Government of the Czech Republic on 15 March 2010 passed a resolution No. 205 to address cyber security issues and has established the Ministry of Interior of the Czech Republic as a coordinator of cyber security issues and the national authority for the area.

On 24 May 2010 the Czech Government adopted resolution No. 380, which established the Interdepartmental Coordination Council for the area of ​​cyber security.

On 9 December 2010 Ministry of Interior of the Czech Republic with CZ.NIC signed memorandum, and established the National CSIRT.

Currently, the National CSIRT performs the role of "Point of Contact" for the information technology contributes to the solution of incidents relating to cyber security in the networks operated in the Czech Republic. Until the establishment of government CSIRTs also play the role of "Point of contact" for the network of public and state administration in the Czech Republic.

On 20 July 2011 The Czech Government passed a resolution No. 564 to approve Czech Cyber Security Strategy for the period of 2011 - 2015.

On 19 October 2011 the Czech Government adopted Resolution No. 781 which established the National Security Authority as a coordinator for cyber security affairs as well as the national authority for the Cyber Security area.

On 13 May 2014 the National Security Authority of the Czech republic opened National Cyber Security Center in Brno.

On 13 August 2014 president of the Czech republic signed Cyber Security Law of the Czech Republic. The law is effective since 1st January 2015.

According to the Decision n. 781 of the Government of the Czech Republic from 19th October 2011, the National Security Authority was established as a competent national authority for the issues of cybernetic security.

According to the Law n. 205/2017, the National Cyber and Information Security Agency (NCISA, in Czech: NÚKIB) was established as a competent national authority for the issues of cyber and information security.

Main areas of activity of NCISA:

  • » operate the Government CERT (GovCERT.CZ)
  • » cooperation with other Czech CERT® teams and CSIRTs
  • » cooperation with international CERT® teams and CSIRTs
  • » drafting of security standards for different categories of entities in the Czech Republic
  • » support of education in the field of cyber security
  • » research and development in the area of cyber security

Legislation

More information about Czech laws and legislation for Cyber security and defense are here.

All information are subject to change. Last update by: 1.11.2017

Hashtags:

#CyberSecurity
#KyberSoutez
#BudKyber