Your company has assigned you to serve as an industry subject matter expert and advisor for a cyber policy competition team for a local university. This year, the team will be competing in an international Cyber Policy competition in Washington, DC. The policy question for this year’s competition is: what is the best approach for developing a national cybersecurity strategy? The competition will have one U.S. team and nine additional teams from Europe (4 teams) and the Commonwealth nations (5 teams).
The university students have asked you to help them understand the problem space and the likely approaches that competing teams will take. To accomplish this goal, you have decided to prepare a white paper in which you compare the European Union Agency for Network and Information Security (ENISA) guidance document for cybersecurity strategies to a similar document prepared by the Commonwealth Telecommunications Organization (CTO). ENISA provides cybersecurity guidance for member states of the European Union (http://europa.eu/index_en.htm ). CTO provides cybersecurity guidance for members of the Commonwealth of Nations (http://www.commonwealthofnations.org/).
Your starting point for your analysis will be outlines of the two documents (Table 1 and Table 2) which were provided to the teams by the competition’s organizers.
Write a five (5) to eight (8) page white paper in which you summarize your research and discuss the similarities and differences between the two guidance documents. You should focus upon clarity and conciseness more than length when determining what content to include in your paper. At a minimum, your white paper must include the following:
Submit your white paper in MS Word format (.docx or .doc file) using the Compare/Contrast Cybersecurity Strategy Guidelines Assignment in your assignment folder. (Attach the file.)
Table 1. Outline for Commonwealth Approach for Developing National Cybersecurity Strategies (Commonwealth Telecommunications Organisation, 2015).
3 CREATING AND USING A NATIONAL CYBERSECURITY STRATEGY
3.1 Development of the Strategy
3.1.1 An approach to design of the strategy: risk-based and outcome-focused
3.1.2 The use of a maturity model
3.1.3 Key performance indicators
3.1.4 Resources and market forces
3.1.5 Communicating its concepts and ideas
3.2 Delivering the Strategy
3.3 Reviewing the Strategy
4 KEY ELEMENTS OF A CYBERSECURITY STRATEGY
4.1 Introduction and background section
4.2 Guiding principles section
4.3 Vision and strategic goals section
4.4 Objectives and priorities section – using a risk-based approach
4.5 Stakeholder section
4.6 Governance and management structure
4.7 Strategy implementation section
4.7.1 Legal and regulatory framework
4.7.2 Capacity Building
4.7.4 Local technical capability
4.7.5 Incident response
4.8 Monitoring and evaluation
Table 2. Outline for National Cyber Security Strategies: Practical Guide on Development and Execution (European Network and Information Security Agency, 2012).
2 National cyber security strategy lifecycle
3 Develop and execute the national cyber-security strategy
3.1 Set the vision, scope, objectives and priorities
3.2 Follow a national risk assessment approach
3.3 Take stock of existing policies, regulations and capabilities
3.4 Develop a clear governance structure
3.5 Identify and engage stakeholders
3.6 Establish trusted information-sharing mechanisms
3.7 Develop national cyber contingency plans
3.8 Organise cyber security exercises
3.9 Establish baseline security requirements
3.10 Establish incident reporting mechanisms
3.11 User awareness
3.12 Foster R&D
3.13 Strengthen training and educational programmes
3.14 Establish an incident response capability
3.15 Address cyber crime
3.16 Engage in international cooperation
3.17 Establish a public–private partnership
3.18 Balance security with privacy
4 Evaluate and adjust the national cyber-security strategy
4.1 Evaluation approach
4.2 Key performance indicators
Commonwealth Telecommunications Organisation. (2015). Commonwealth approach for developing national cybersecurity strategies. London, UK: Author. Retrieved from http://www.cto.int/media/fo-th/cyb-sec/Commonwealth%20Approach%20for%20National%20Cybersecurity%20Strategies.pdf
European Network and Information Security Agency. (2012). National cyber security strategies: Practical guide on development and execution. Heraklion, Crete, Greece: Author. Retrieved from https://www.enisa.europa.eu/activities/Resilience-and-CIIP/national-cyber-security-strategies-ncsss/national-cyber-security-strategies-an-implementation-guide/at_download/fullReport
NB: We do not resell papers. Upon ordering, we do an original paper exclusively for you.
The post compare contrast the enisa and commonwealth approaches to developing national cybersecurity strategies appeared first on Essay Writers.