The eight session of the National Cybersecurity Cluster joined together 80 participants from government organizations, regional state administrations, the State Service for Special Communications and Information Protection of Ukraine, Security Service of Ukraine, National Bank of Ukraine, Ministry of Energy of Ukraine, General Staff of the Armed Forces of Ukraine, Cyber Police, international organizations such as NATO, OSCE, USAID, international companies such as CISCO and others.
The speakers presented their projects and best practices:
- Serhii Prokopenko, Head of the NCCC Support Service of the NSDC Staff and Valentyn Matiashenko, NSDC state expert. Presentation topic: “National Cybersecurity Strategy of Ukraine 2021 – 2025. Roles and Responsibilities”;
- Oleksandr Potii, Deputy Head of the State Service for Special Communications and Information Protection of Ukraine. Presentation topic: “The State Service of Special Communication and Information Protection of Ukraine (SSCIP) role and objectives in the implementation of the new National Cybersecurity Strategy of Ukraine for 2021-2025”.
- Petro Matiaszek, Chief of Party, USAID Cybersecurity for Critical Infrastructure in Ukraine Activity. Presentation topic: “USAID support for implementation of the new Cybersecurity Strategy of Ukraine”.
- Volodymyr Koliadenko, Vice President of the Kyiv Chamber of Commerce and Industry, Chairman of the Anti-Crisis Center for Business Cyber Defense. Presentation topic: “Cybersecurity Month as an example of effective public-private partnership”.
- Victoria Hnatovska, acting General Director of the Directorate for Energy and Resource Efficiency Policy, Ministry of Energy of Ukraine, Valerii Yermoshyn, Head of the Information Security Department NEC UkrEnergo. Presentation topic “Cybersecurity Concept for the Energy Sector of Ukraine Critical Infrastructure 2021–2023”
Cluster meeting discussed such as:
- The programs and measures are envisaged to engage all regions in the accomplishment of the Strategy tasks, especially with regard to the information sharing;
- The Strategy identifies a “low level of legal accountability for violating the law in this area.” The solution is to increase accountability? Not this would lead to additional inspections and regulatory pressure on critical infrastructure?
- Imperfection of the modern cybersecurity system and “low level of legal accountability for violating the law in this area”. Effective solutions to strengthen accountability. Additional inspections and regulatory pressure on critical infrastructure;
- To what extent has Ukraine learned the lessons of the 2017 Petya cyberattack? Is Ukraine ready to respond to a cyberattack of such scale, and how the authorities to the Strategy would act next time it happens?
- Ukraine’s willingness to respond to a cyberattack such a level of “Not Petya – 2017”. To what extent has Ukraine learned the lessons of the Not Petya – 2017 cyberattack, large losses from which are due to the distribution from the trusted internet service “Medok”. How the Strategy’s executors will act in a similar cyberattack next time;
- The analyzing the issue of cyber forces establishment, a related question arises regarding the creation of a cyber workforce reserve.
The eighth session of the cluster was an important step to address issues related to the implementation of the “National Cybersecurity Strategy 2021-2025”.