Committed to connecting the world

2022 ITU-Bhutan joint CyberDrill

BACKGROUND

The International Telecommunication Union (ITU) aims to improve the cybersecurity readiness, protection, and incident response capabilities of Member States by conducting CyberDrills at the national and regional level. This event where cyber-attacks, information security incidents, and other disruptions are simulated, help to test an organization’s cyber capabilities. Over the past ten years, ITU has held over thirty CyberDrills partnering with more than 100 countries committed to improving cybersecurity at both national and global levels.

While ITU CyberDrills are generally held face to face, this 2022 ITU-Bhutan Joint National CyberDrill was held remotely and aimed to bring together the cybersecurity community, especially Bhutan’s CNIs (Critical National Infrastructures), operators in order to meet the challenges posed by the COVID-19 pandemic.

This 2022 ITU-Bhutan Joint National CyberDrill emphasized the role of national Computer Incident and Response Teams (CIRTs) and Computer Security Incident Response Teams (CSIRTs) in building cyber resilience and protecting critical information infrastructure.

OBJECTIVES

The 2022 ITU-Bhutan Joint National CyberDrill tailored event sessions around four thematic concepts Reflect, Share, Learn and Practice.

Reflect: Bring together the global cybersecurity community to review major regional cybersecurity trends and consider improvements based on the five pillars of ITU Global Cybersecurity Agenda (GCA) and The Global Cybersecurity Index (GCI).
Share: Promote knowledge sharing of beneficial communication networks, and exchange funding stream resources.
Learn: Build capacity for the CSIRT communities within incident response and critical information infrastructure protection (CIIP).
Practice: Test operational resiliency key concepts across CSIRT/CIRT/CERT community.

TRAINING

	11 July 2022 12 July 2022 13-14 July 2022		14:00 - 17:00 BTT (Bhutan time) 13:00 - 17:15 BTT 13:00 - 17:00 BTT
	Speakers		Live Captioning Archive
	Registration		Remote participation Registered user only

AGENDA

Day 1

One Regional Meeting (Reflect & Share): Featured speakers included cybersecurity leaders from the government and regional organizations etc. shared best practices and lessons learned around critical information infrastructure protection (CIIP).

The focus topic for this regional meeting was:

State of Cybersecurity in Bhutan

14:00 - 14:10 BTT	Opening remarks • Ms. Atsuko Okuda, ITU Regional Director for Asia and the Pacific
14:10 - 14:30 BTT	Keynote Address • Dasho Phuntsho Tobgay, Secretary, Ministry of Information and Communications.
14:30 - 14:45 BTT	Overview of Cybersecurity and CyberDrill • ITU and BtCIRT
14:45 - 15:45 BTT	Panel 1:State of Cybersecurity in Bhutan • Ms. Dechen Chhoeden, Bhutan Computer Incident Response Team (BtCIRT) • Ms. Caroline Troein, Cybersecurity Lead Researcher, ITU • Mr. Champika Wijayatunga, Regional Technical Engagement Manager – Asia Pacific, ICANN • Mr. Bharat Gurung, CISO, Bank of Bhutan Limited Moderator: Philip Victor, Senior Cybersecurity Consultant, ITU
15:45 - 15:50 BTT	Day 1 Wrap-up
15:50 - 16:00 BTT	Break
16:00 - 17:00 BTT	CLOSED SESSION Executive Session for High Level Government Officials and Parliamentarians on Cybersecurity This closed session will provide an opportunity for cybersecurity specialists to discuss with high-level government officials and parliamentarians the current state of cybersecurity in Bhutan. Beyond building further from the previous sessions it will provide a space for candid and frank exchanges of views among high-level stakeholders From the discussions, this session will facilitate the identification of next steps by each government entity represented to enhance cybersecurity in Bhutan. It will also highlight the role of parliamentarians in ensuring cybersecurity in the country.

Day 2

Two Training Sessions (Learn):

ITU conducted training sessions as follows

13:00 - 14:00 BTT	Session One: Implementing and Managing CIRT Trainer: Philip Victor, Senior Cybersecurity Consultant, ITU
14:00 - 15:30 BTT	Session Two: Incident Response and Handling With growing concerns of cyber threats, understanding cyber incidents, classification of incidents, types of incidents and how to respond to these incidents is critical. This training focuses on how to classify incidents based on international standards within the CERT community. Trainer: Mr. Ir Tejinder Singh, Cybersecurity Specialist, Welchman Keen
15:30 - 15:45 BTT	Break
15:45 - 17:15 BTT	Session Three: Introduction to Critical National Information Infrastructure Protection Critical Infrastructure (CI) refers to assets that are essential for the functioning of a society and the economy. This training introduces the common practices related to the protection of Critical National Information Infrastructure, while providing an overview of the classification of all elements related to Critical Infrastructure (CI) from a defence and national security perspective. It also looks at the security of various sectors that are critical for a country’s local economy and infrastructure development. Trainer: Mr. Ir Tejinder Singh, Cybersecurity Specialist, Welchman Keen

Day 3 & Day 4

Three Scenario-Based Exercises (Practice): Exercises are one of the highlights of the ITU Cyberdrill.

It was expected that the Practice session have four exercises surrounding specific CNI sectors, including:

1) General (Sector-neutral);

2) Finance/Banking Sector Specific;

3) Operational Technology Specific

4) TBC

Participating individuals should have intermediate to advanced level of technical understanding.

13 July 2022
13:00 - 15:00 BTT	Scenario One
15:00 - 17:00 BTT	Scenario Two
14 July 2022
13:00 - 15:00 BTT	Scenario Three
15:00 - 17:00 BTT	Scenario Four