GFCE Cybersecurity Knowledge Modules

KM3 - Cyber diplomacy and international cooperation
Module objectives
1. Risks for international peace and cyber-stability
3 Topics
1.1 Cyber-attacks and geopolitics
1.2 Cyber as part of hybrid warfare
1.3 Cyber-armament
2. Towards an international agreement
4 Topics
2.1. Framework for responsible state behaviour in cyberspace
2.2. Applicability of international law
2.3. Norms, confidence building measures, and capacity building
2.4 Broader context
3. International cooperation
4 Topics
3.1. The United Nations
3.2. Other multilateral forums
3.3. Regional efforts
3.4. Multistakeholder efforts
4. Cyber diplomacy
5. Main takeaways
6. Assignment
1 Quiz
KM3 Quiz
KM4 - Cyber Incident Management
Module objectives
1. Introduction
2. Types of Cyber Incident Response Teams
5 Topics
2.1. National Computer Security Incident Response Team
2.2. Product Security Incident Response Team
2.3. Sector CSIRTs
2.4. Security Operation Centre
2.5. Commercial CSIRT
3. What needs to be considered when establishing a National CSIRT?
2 Topics
3.1. CIRT framework
3.2. How to set up CSIRT and SOC
4. How to assess cyber incident readiness
3 Topics
4.1. Security Incident Management Maturity Model (SIM3)
4.2. Security Operation Centre Capability and Maturity Model (SOC-CMM)
4.3. CSIRT Maturity – Self-assessment Tool
5. Which services do the CSIRTs offer?
2 Topics
5.1. FIRST CSIRT services framework
5.2. ITU-T Recommendation X.1060 service categories
6. Who does the CSIRT serve?
7. Which Tools does a CSIRT need?
8. Policies, frameworks, and guidelines
9. Resourcing and funding a CSIRT
1 Topic
9.1. What does a CSIRT Budget look like?
10. CSIRT capabilities
3 Topics
10.1. Training and certification
10.2. Auditing
10.3. Cyber drills
13. Main takeaways
14. Assignment
1 Quiz
KM4 Quiz
2 of 5
Previous Topic
Next Topic

3.2. Other multilateral forums

GFCE Cybersecurity Knowledge Modules 3. International cooperation 3.2. Other multilateral forums

🎯 What other major diplomatic and political processes have cybersecurity elements on the agenda?

Diplomatic and political processes that are not focused on cybersecurity increasingly consider cybersecurity aspects as well. 

Cyberespionage appeared on the agenda of the G20, a group of 20 major economies, in 2015, when it agreed ‘that no country should conduct or support ICT-enabled theft of intellectual property, including trade secrets or other confidential business information, with the intent of providing competitive advantages to companies or commercial sectors’ (G20, 2015, art. 26). The G20 Cybersecurity Dialogue Working Group, as part of the G20 Digital Economy Task Force, is a venue for multistakeholder, cross-sectoral discussion on security in the context of the digital economy, such as exchanging good national practices. In addition, the G20 Osaka Track, initiated in 2019, intensified international rule-making efforts in the digital economy, especially on data flows and e-commerce, while promoting enhanced protections for intellectual property, personal information, and cybersecurity.

Similarly, in the past, the Group of Seven (G7) has reflected on the need for responsible state behaviour in cyberspace and, in particular, on its relevance for intellectual property theft and economic cyberespionage.

The World Trade Organization (WTO), under its plurilateral negotiations on e-commerce, carried out under the Joint Statement Initiative (JSI), promotes cybersecurity as one of the issues on its agenda. Accordingly, discussions about cybersecurity have focused on strengthening national capacities for incident response, encouraging cooperation, and fostering sharing of information (JSI Focus Group D), but have also considered cross-border data flows (Focus Group B) and electronic authentication (Focus Group A).

The Global Forum on Digital Security for Prosperity of the Organisation for Economic Co-operation and Development (OECD) offers a multilateral and multidisciplinary setting that, since 2018, brings together experts and policymakers to share experiences and good practices on digital security and discuss the economic and social aspects of cybersecurity. In addition, the OECD’s Working Party on Security and Privacy in the Digital Economy (SPDE) brings together stakeholders to shape high-level policy recommendations, such as those related to the security of digital technologies and products.

Previous Topic
Back to Lesson
Next Topic

New post

Your email address will not be published. Required fields are marked *

Post a comment
Skip to content