The economic and technological systems of Western countries are highly dependent on CyberSpace, they require more and more accurate risk analysis and management of threats relate to a significant increase in cyber attacks and their complexity. The Italian model with regard to issues of cyber security and intelligence is in the process of evolution through a NATIONAL FRAMEWORK. The
The Italian model with regard to issues of cyber security and intelligence is in the process of evolution through a NATIONAL FRAMEWORK. The current Framework presented in February 2016 by On.Minniti and Professor Baldoni actualizes two important facts:
NIST models transposing the Standards ISO 27001 Information Security Management System
and Standards ISO 31000 Risk Management.
The Italian model, falls on the American model, in Italian actually providing integration between different types of standards, corporate organizational structures, and their types and manage the associated risks.
Choosing from US Framework it was made considering that the response to cyber threats should provide an alignment internationally as well as at the country level system. This also to allow multinational companies to align their processes for managing cyber security more easily on an international scale.
The current model is however not exhaustive as it does not emphasize preventive measure dynamic attacks with countermeasures in industrial espionage contexts to companies and research centers. To this end, we need a communication and research process with the involvement of the civil and military intelligence structures (DIS, AISI, AISE) both on national scenarios both on transnational scenarios. This involvement needs to reference standards to support specific protocols between public and private organizations and intelligence structures in the event of terrorist attacks or industrial espionage or simply redefining induced in crisis scenarios of new geopolitical boundaries in Italian strategic sectors such as: RESEARCH, DEFENSE, ENERGY, TELECOMMUNICATIONS, AGRIBUSINESS, TOURISM, HIGH FASHION.
It is also necessary to create suitable operating centers for security and intelligence (Cyber Security Operational Center CSOC) dealing with security issues in a strategic, tactical and operational national and transnational, and where they will be analyzed and related to Dynamic Data Mining Techniques millions of data.
About the Author: Prof. Francesco Corona
Cyber Intelligence expert – Security Affairs Writer.
Teacher and member of the Scientific Committee of the Master in Security and Cybersecurity at LINK CAMPUS UNIVERSITY Rome (http://www.unilink.it/cuap-sicurezza-informatica-cyber-security-security-manager/ ),for over thirty years working in the security sector and she perfected their knowledge in professional activities and US foreign courses. He stood out in teaching activities for the specialized training to technical and telematic CyberSecurity at SISDE (AISI) participating in numerous tables of discussion and planning of national security plans for critical infrastructure and the protection of Made in Italy. Author of numerous articles in security wrote for the magazine of the Intelligence GNOSIS services.
(Security Affairs – Italian Cybersecurity National Framework, Cyber Security)