Held under the slogan “ Cyber Threats, and forging a credible deterrent ”,
the XII Jornades CCN-CERT
, which was chaired by his majesty the king, have brought together key experts of cybersecurity and companies of strategic interest for the country and have gathered more than 2,400 people, from both the public and private sectors, with 43 sponsors and 8 partners; and more than 91 rapporteurs, along with support received by the leading companies in cybersecurity.
The fundamental objective of the event has been promoting the paradigm shift in the protection of cyberspace, as it is necessary to make progress on the resilience and advocacy, accepting a residual risk, where more and more weight capacities for monitoring and surveillance, together with an effective response at all levels of State (citizens, enterprises and public sector), in a context of growing cooperation between the public and private sectors.
Nothing is known today digital transformation, inevitable and inescapable, making information technologies, and omnipresent ubicuas, the foundation of our services and systems, to contribute to the unit of the same, offering various possibilities and opportunities for innovation, but by configuring a cyberspace exposed to increased risks and cyber threats, to expand the area of attack possible due to its high technological component, easy accessibility, anonymity, high levels of connectivity and dynamism; risks of a growing concern not only the entities but also to the citizens themselves, and which give rise to ciberincidentes occurring with increasing number, scope and sophistication. In particular, according to the CCN-CERT, 2018 can wipe out the order of 34,000 ciberincidentes of various types in public sector entities and companies of strategic interest, according to the pattern of growth in number, scope and sophistication.
This transformation digital gives rise to challenges in the field of cyber security such as derivatives of accelerating the pace of technological change; the impact of emerging technologies, particularly of artificial intelligence; greater reliance not only of technology, but also of coming from abroad, as well as external services, while a child under the control of the underlying technology; the increase in the number and severity of security incidents; the expansion of the security dimensions, beyond the traditional confidentiality, integrity, authenticity, availability and traceability, in particular, for the attention of the privacy demand; and a need for greater involvement of people, conscious and trained; processes, corresponding to the regulation and geared to a theatre of active defence; and technology in cyber security, not only safe, but also configured penetration and safely.
The national security strategy 2017 provides for a review of the strategy of National Cybersecurity 2013 with the aim of ensuring a use of networks and information and communication systems through the strengthening of capacities in prevention, detection and response to cyber-attacks, motivating and adopting specific measures to contribute to a safe and reliable cyberspace.
Security requires a holistic approach. This could not be any other way than through the combined action of an appropriate legal framework, cooperation, and services and tools, particularly those concerning the detection and response, all this in the context of a strategy that will equip the consistency of the whole.
Throughout this General Secretariat of the Digital Administration was working very closely with the
National Cryptologic centre
in the promotion of cyber security, and also with the Spanish data protection agency
in the three tracks: in the legal framework, through the National security which should be modified to apply the provisions of the first additional provision of the organic law 3/2018; in aspects relating to cooperation on cybersecurity, according to the role, particularly in the national council of cybersecurity; and on the most practical and operational, security through various activities in particular, by its nature, scope and ambition, the introduction of the project of cyber security Operations of the General state administration and its Agencies.
