Public CERT system protection needs are not currently catered for by the market, as brought out by the European Network and Information Security Agency (ENISA). Furthermore, SMEs’ protection resources are very limited. This is where the PROTECTIVE system comes in, providing specific solutions for the shortfalls of both groups.

GMV is taking part in the PROTECTIVE project for proactive risk management through improved cyber situational awareness. SMEs and public CERTs (Computer Emergency Response Teams), on the strength of the work carried out by project members, will be better prepared for handling cyberattacks malware outbreaks and other security problems. They will also have more wherewithal for carrying out prevention and response procedures.

GMV’s input to the Horizon 2020 research and investigation project focuses on definition and development of alert-correlation models and threat-intelligence sharing modules for National Research & Education Networks (NRENs) and CERTS. It is also responsible for integration and testing of PROTECTIVE’s various modules. In particular GMV is contributing its expertise and knowledge of correlation modules and intelligent sharing of security threats.

In the words of José María Legido, Manager of GMV’s Northeast Office, “in the context of today’s digital transformation, current critical-infrastructure cyberattacks are bound to be replicated on this new generation of means of production”. Industry 4.0 “will involve an intensive use of software to control sensors, robots and a wide range of cyber-physical systems. Moreover, the integrity of this control software will become absolutely critical for guaranteeing the feasibility of this type of industry and the companies revolving around it”.

Specific Solutions

There are currently two main thrusts in the effort to achieve a better knowledge of the state of cybersecurity in Europe. The first involves working with Computer Security Incident Response Teams or Computer Emergency Response Teams (CSIRTs or CERTs) by means of an enhanced monitoring of security and a better exchange of cyberthreat intelligence between organizations. The second concerns critical alert prioritization in terms of the attack’s potential damage on threatened assets and hence on the business of organizations.

For years now GMV has been investing in inhouse technology to protect its customers’ critical infrastructure. This technology has now been robustly tried and tested against the new cyberthreats now hovering over the new forms of production.

To find out more: https://protective-h2020.eu/