Committed to connecting the world

2022 ITU-Bhutan joint CyberDrill



BACKGROUND


The International Telecommunication Union (ITU) aims to improve the cybersecurity readiness, protection, and incident response capabilities of Member States by conducting CyberDrills at the national and regional level. This event where cyber-attacks, information security incidents, and other disruptions are simulated, help to test an organization’s cyber capabilities. Over the past ten years, ITU has held over thirty CyberDrills partnering with more than 100 countries committed to improving cybersecurity at both national and global levels.

While ITU CyberDrills are generally held face to face, this 2022 ITU-Bhutan Joint National CyberDrill was held remotely and aimed to bring together the cybersecurity community, especially Bhutan’s CNIs (Critical National Infrastructures), operators in order to meet the challenges posed by the COVID-19 pandemic.

This 2022 ITU-Bhutan Joint National CyberDrill emphasized the role of national Computer Incident and Response Teams (CIRTs) and Computer Security Incident Response Teams (CSIRTs) in building cyber resilience and protecting critical information infrastructure.


OBJECTIVES​


The 2022 ITU-Bhutan Joint National CyberDrill tailored event sessions around four thematic concepts Reflect, Share, Learn and Practice.







  • Reflect: Bring together the global cybersecurity community to review major regional cybersecurity trends and consider improvements based on the five pillars of ITU Global Cybersecurity Agenda (GCA) and The Global Cybersecurity Index (GCI). 
  • Share: Promote knowledge sharing of beneficial communication networks, and exchange funding stream resources.​
  • Learn: Build capacit​​​y for the CSIRT communities within incident response and critical information infrastructure protection (CIIP).
  • Practice: Test operational resiliency key concepts acros​s CSIRT/CIRT/CERT community.​


TRAINING



11 July 2022
12 July 2022
13-14 July 2022

14:00 - 17:00 BTT (Bhutan time)
13:00 - 17:15 BTT
13:00 - 17:00 BTT



Spe​akers​​

Live
Captioning
Arch​ive




Registration


​​
Remote participation Registered user only


AGENDA


Day 1 
One Regional Meeting (Reflect & Share): Featured speakers included cybersecurity leaders from the government and regional organizations etc. shared best practices and lessons learned around critical information infrastructure protection (CIIP). 
The focus topic for this regional meeting was:
  • State of Cybersecurity in Bhutan 
​14:00 - 14:10 BTT
Opening remarks
• Ms. Atsuko Okuda, ITU Regional Director for Asia and the Pacific
​14:10 - 14:30 BTT
Keynote Address
Dasho Phuntsho Tobgay, Secretary, Ministry of Information and Communications.
14:30 - 14:45 BTT
Overview of Cybersecurity and CyberDrill
 ITU and BtCIRT
14:45 - 15:45 BTT
Panel 1:State of Cybersecurity in Bhutan

Ms. Dechen Chhoeden, Bhutan Computer Incident Response Team (BtCIRT)
Ms. Caroline Troein, Cybersecurity Lead Researcher, ITU
Mr. Champika Wijayatunga, Regional Technical Engagement Manager – Asia Pacific, ICANN
• ​Mr. Bharat Gurung, CISO, Bank of Bhutan Limited

Moderator: Philip Victor, Senior Cybersecurity Consultant, ITU 
​15:45 - 15:50 BTT
Day 1 Wrap-up
​15:50 - 16:00 BTT
​Break
16:00 - 17:00 BTT
CLOSED SESSION

Executive Session for High Level Government Officials  and Parliamentarians on Cybersecurity 

This closed session will provide an opportunity for cybersecurity specialists to discuss with high-level government officials and parliamentarians the current state of cybersecurity in Bhutan. Beyond building further from the previous sessions it will provide a space for candid and frank exchanges of views among high-level stakeholders

From the discussions, this session will facilitate the identification of next steps by each government entity represented to enhance cybersecurity in Bhutan.  It will also highlight the role of parliamentarians in ensuring cybersecurity in the country. 


Day 2  
Two Training Sessions (Learn): 
ITU conducted training sessions as follows

​13:00 - 14:00 BTT
Session One: Implementing and Managing CIRT

Trainer: Philip Victor​, Senior Cybersecurity Consultant, ITU 
​14:00 - 15:30 BTT
Session Two: Incident Response and Handling
With growing concerns of cyber threats, understanding cyber incidents, classification of incidents, types of incidents and how to respond to these incidents is critical. This training focuses on how to classify incidents based on international standards within the CERT community.

Trainer: Mr. Ir Tejinder Singh, Cybersecurity Specialist, Welchman Keen
​15:30 - 15:45 BTT
​Break
15:45 - 17:15 BTT
Session Three: Introduction to Critical National Information Infrastructure Protection
Critical Infrastructure (CI) refers to assets that are essential for the functioning of a society and the economy. This training introduces the common practices related to the protection of Critical National Information Infrastructure, while providing an overview of the classification of all elements related to Critical Infrastructure (CI) from a defence and national security perspective. It also looks at the security of various sectors that are critical for a country’s local economy and infrastructure development.

Trainer: Mr. Ir Tejinder Singh​, Cybersecurity Specialist, Welchman Keen​


Day 3 & Day 4 
Three Scenario-Based Exercises (Practice): Exercises are one of the highlights of the ITU Cyberdrill. 
It was expected that the Practice session have four exercises surrounding specific CNI sectors, including:
1) General (Sector-neutral);
2) Finance/Banking Sector Specific;
3) Operational Technology Specific
4) TBC

Participating individuals should have intermediate to advanced level of technical understanding.​

13 July 2022
​13:00 - 15:00 BTT
Scenario One 
15:00 - 17:00 BTT
​Scenario Two 
14 July 2022
13:00 - 15:00 BTT
Scenario Three
15:00 - 17:00 BTT
Scenario Four ​