The National Forum of cybersecurity, under the National Council of cybersecurity, is the collaborative workspace público-privada to help the implementation of the national strategy of cybersecurity.
Since its establishment in july 2020, the forum has become a forum to respond to questions and concerns associated with safety in an environment of global partnership.
The
articles published
focusing on cybersecurity citizen, corporate social responsibility, the momentum to industry and r + D + i, the specialized training on cybersecurity, as well as on the needs of cyber defence capabilities, are as follows:
Compass citizen security
The National Strategy of cybersecurity noted the need for greater involvement of society as a whole, by promoting a culture of cybersecurity, so as to move from awareness to the commitment, on the understanding that the citizen is to provide national cybersecurity.
Furthermore, as indicated by the Digital bill of rights , the public authorities must ensure the right to security of citizens, and promote awareness and training for cybersecurity, which will be able to count on the collaboration of civil society.
With the aim of addressing both perspectives from the need to raise awareness in society on ciberriesgos that implies the use of technology, Compass for cyber security of the citizen is perceived as a guiding instrument which examines ten Areas that the national forum of cybersecurity has found are among those who now account for a greater risk to the citizenship or that require particular attention.
Code of Good Governance of cybersecurity
The Code of good governance is the fruit end of the work of the group composed of experts in terms of cyber security, as well as an analysis of regulations and standards that exist, considered from a practical perspective and for the improvement of good corporate governance in the area of cybersecurity.
The aim of the code is propose to the practical measures to support the model of good governance of cybersecurity to facilitate the management of the security of networks and information systems and will contribute to improving the decision-making process in this area by the government of the organizations and, in particular, by the Administrative body.
Offers some general recommendations, organized on principles for use by any organization that seeks to make appropriate governance of cyber security, regardless of their size, sector, activity or even degree of maturity.
Impulso a la Industria y a la I+D+i. Resumen de propuestas y trabajos de la fase 2
During the first phase of the work of the
- Identify the full value chain, including supply and demand, and identify cualifique and actors in the supply chain.
- Define, design and implement a barometer to measure the main indicators of the ecosystem of cybersecurity english.
- To agree on a common taxonomy between industry and research to establish the products and services of cyber security to develop and implement.
In this second phase of work defined initially “ what ” we must do (taxonomy), to continue with the value chain to be identified by the “ who ” with the main players in the ecosystem, and end up with the “ how and how much ” to be translated into the barometer of cybersecurity. Finally, the emergence in recent months of the Observatory of cyber security (Observaciber), makes the work planned in the barometer, should be aligned with the second part 2023 with Observaciber.
Competency framework for specialized training on cybersecurity
This document aims to define a competency framework that would serve as a reference to the design of programmes, specialized training on cybersecurity in Spain. These powers may be of two types:
- Specific competencies , relating to the area of cybersecurity, which must be treated in special training courses.
- Core competencies/general , which are specific to the area of cybersecurity (can be common with other disciplines), but which are considered particularly important in this area.
It also identifies knowledge which can be considered as pre-requisitos access to higher specific programmes on cybersecurity (for example, post-grados) or to define specific competences related to the area of cyber security, but in a basic and essential (for example, in the lower grades of titles of degree).
Report on the needs, capacities and challenges for collaboration público-privada cyber defence capabilities in the companies of the defence and security
This document is the final outcome of the work carried out to the report on the needs, capacities and challenges for collaboration público-privada cyber defence capabilities in the companies of defence and security.
The methodology used for this work has been based on the realization of a questionnaire addressed to the ecosystem national cybersecurity and the cyber defence capabilities. For this purpose, it is invited to participate to companies, universities and research and technological developments relevant to the participating agencies in this group..
It had studied the technological capacity still, as well as services and products on the market demanded by the defence sector and security. They have also identified areas for improvement in the area of cyber defence capabilities and cybersecurity.
