GFCE Cybersecurity Knowledge Modules

KM3 - Cyber diplomacy and international cooperation
Module objectives
1. Risks for international peace and cyber-stability
3 Topics
1.1 Cyber-attacks and geopolitics
1.2 Cyber as part of hybrid warfare
1.3 Cyber-armament
2. Towards an international agreement
4 Topics
2.1. Framework for responsible state behaviour in cyberspace
2.2. Applicability of international law
2.3. Norms, confidence building measures, and capacity building
2.4 Broader context
3. International cooperation
4 Topics
3.1. The United Nations
3.2. Other multilateral forums
3.3. Regional efforts
3.4. Multistakeholder efforts
4. Cyber diplomacy
5. Main takeaways
6. Assignment
1 Quiz
KM3 Quiz
KM4 - Cyber Incident Management
Module objectives
1. Introduction
2. Types of Cyber Incident Response Teams
5 Topics
2.1. National Computer Security Incident Response Team
2.2. Product Security Incident Response Team
2.3. Sector CSIRTs
2.4. Security Operation Centre
2.5. Commercial CSIRT
3. What needs to be considered when establishing a National CSIRT?
2 Topics
3.1. CIRT framework
3.2. How to set up CSIRT and SOC
4. How to assess cyber incident readiness
3 Topics
4.1. Security Incident Management Maturity Model (SIM3)
4.2. Security Operation Centre Capability and Maturity Model (SOC-CMM)
4.3. CSIRT Maturity – Self-assessment Tool
5. Which services do the CSIRTs offer?
2 Topics
5.1. FIRST CSIRT services framework
5.2. ITU-T Recommendation X.1060 service categories
6. Who does the CSIRT serve?
7. Which Tools does a CSIRT need?
8. Policies, frameworks, and guidelines
9. Resourcing and funding a CSIRT
1 Topic
9.1. What does a CSIRT Budget look like?
10. CSIRT capabilities
3 Topics
10.1. Training and certification
10.2. Auditing
10.3. Cyber drills
13. Main takeaways
14. Assignment
1 Quiz
KM4 Quiz
2 of 5
Previous Topic
Next Lesson

2.4 Broader context

GFCE Cybersecurity Knowledge Modules 2. Towards an international agreement 2.4 Broader context

🎯 What is the link between human rights and cyber-norms?

🎯 How does cybersecurity impact economic development and SDGs?

Deliberations about cybersecurity and related norms don’t happen in a vacuum. In order to observe a broader context, cybersecurity should be connected with policy discussions related to digital aspects of human rights, and economic development.

The link between cyber norms and human rights may not be immediately obvious. Report of the APC and Global Public Digital, Unpacking the GGE’s Framework on Responsible State Behaviour: Cyber Norms, clarifies that the goal of cyber norms of promoting responsible state behaviour in cyberspace contributes to the underlying conditions that are needed for the exercise of human rights today. The report further elaborates on how each of the norms relates to human rights. 

In addition, the relationship between the Women, Peace and Security (WPS) agenda and cyber-enabled threats and cybersecurity is explored in the report “System Update: Towards a Women, Peace and Cybersecurity Agenda” by the United Nations Institute for Disarmament Research (UNIDIR). The paper analyses the linkages between WPS priority themes – gender equality, women’s participation in international security, prevention and protection of violence against women, gender-differentiated needs – and international cybersecurity. It identifies priority areas that should be addressed to ensure gender-inclusive cyberspace that protects the rights of women and girls.

On the other hand, sustainable development heavily relies on digitalisation and digital technologies, as the link between digital transformation and the Sustainable Development Goals showcase. ‘The Global Risks Report 2022’ of the World Economic Forum emphasises the link between the two particular digital concerns, ‘digital inequality’ and ‘cybersecurity failure’. A GFCE report ‘Integrating Cyber Capacity into the Digital Development Agenda’ underlines that digitisation and resilience are two sides of the same coin, and identifies pathways to bridge the commonly detached topics and communities – development and cybersecurity communities, particularly in the field of capacity building.

Case study

In his interview for the ‘Inside Cyber Diplomacy’ podcast, co-hosted by Mr Jim Lewis and Mr Chris Painter, Mr Moctar Yedaly, Africa Program Director for the GFCE, and former Head of the Information Society department within the African Union Commission discusses the African context and cybersecurity negotiations. Mr Yedaly also provides a cross-link of security with development, discusses the need for high-level political interest and attention to the issues of ICTs, and the value of including more stakeholders in multilateral negotiations.

Contribute and engage

To learn more about the broader context of cybersecurity, refer to the introductory Knowledge Module.

Previous Topic
Back to Lesson
Next Lesson

New post

Your email address will not be published. Required fields are marked *

Post a comment
Skip to content