The International Telecommunication Union's Global CyberDrill 2024 (Cyber 100x) took place in Dubai from 23 to 25 April 2024. The drills simulated cyber-attacks, information security incidents or other disruptions to test an organization's cyber capabilities. The Global CyberDrill was organized by ITU's Telecommunication Development Bureau (BDT) and the United Arab Emirates (UAE) Cyber Security Council.
Dr. Gevorg Mantashyan, First Deputy Minister of High-Tech Industry of the Republic of Armenia, participates in the ITU Global CyberDrill 2024. He told the ITU about the steps the Armenian Government is taking to implement the Armenian Digitalization Strategy 2021–2025 and other programs aimed at ensuring cyber resilience at the national level.
— What are your expectations from the ITU Global CyberDrill 2024 in the UAE? Who is part of the Armenian delegation?
We are a delegation of 5 people from policy, strategy makers and technical experts. The most important is to build communication channels for global collaboration and this gathering can contribute to shaping this momentum of uniting efforts to reach shared targets. According to the ITU Global Cybersecurity Index (2020), Armenia was ranked 91st with good results in terms of legal, technical and cooperative measures – partnerships with international partners and relevant organizations.
— What position in the rating can Armenia take in the new version of the ITU Global Cybersecurity Index? Which benchmarks have the country improved? Which programs connected with cybersecurity were implemented?
The Armenian Government has been actively involved in supporting the growth of the country's ICT industry. Since 2019, the Ministry of High-Tech Industry of the Republic of Armenia has been tasked with supervising the formulation and execution of government policies and strategies concerning ICT and related sectors. Currently, the Government is implementing Armenia’s Digitalization Strategy for 2021–2025 in cooperation with international donors. Cybersecurity is listed as the first fundamental condition of digitalization.
A draft legislation concerning “Cyber Security” has been meticulously drafted and is currently under the public consultations stage before being sent to the Parliament.
The overarching objective of the proposed legislation is to establish a cyber-safe environment within the Republic of Armenia's information systems and critical infrastructures, which are indispensable for the delivery of vital services.
The proposed law aims to regulate various aspects pertaining to the detection, notification, prevention, and resolution of cyber incidents, as well as the monitoring, supervision, and compliance with the stipulations outlined within this legislative framework.
— Could you provide insights into the strategic approach adopted by the Armenian government and the Ministry of High-Tech to incorporate cybersecurity as a fundamental condition into the broader digital development initiative to ensure cyber resilience at the national level?
We need to come to the conclusion that expenditure on cyber security is already a must investment for a better and secure future. We plan to strengthen the current institutions and invest in capacity building. The new information security institutions will develop norms for ensuring the security of e-government systems and information exchange processes used in state bodies, compile relevant methodological guidelines, as well as organize professional courses, carry out professional development activities for relevant specialists, and develop new technical and hardware-software solutions. The Ministry’s activities encompass developing security norms, producing methodological guidelines, organizing professional training courses, enhancing specialist qualifications, and conducting research in information security.
— ITU is working with Member States to build capacity at national and regional levels, deploy capabilities, and assist in establishing and enhancing National Computer Incident Response Teams (CIRTs). Effective mechanisms and institutional structures at the national level are necessary to reliably deal with cyber threats and incidents. National Computer Incident Response Teams play an important role in the solution. What are the plans regarding the National Computer Incident Response Teams Centre in Armenia?
We have established the National CIRT as a central hub for coordinating incident response activities for critical infrastructure operators in Armenia. Besides this, the National CIRT team aspires to be the cybersecurity excellence center in the country, by staying aware of the latest cyberthreats and advising organizations within its jurisdiction on how to minimize their risks.
— What role do you think ITU can play in helping to develop Armenia's National CIRT?
The ITU has adopted the most effective approach to improving global cyber defense – enabling cooperation and collective capacity building. Armenia's continued participation in the cyber drills organized by the ITU will result in exactly these outcomes. Such events are an excellent opportunity for our cyber defense personnel to face realistic challenges and connect with other CIRTs, with whom we later establish continuous partnerships and share the experience.
The ITU National CyberDrill will be held in Yerevan on 26–28 June 2024, co-organized with the Ministry of High-Tech Industry of Armenia and the Information Systems Agency of Armenia (ISAA).
— What are your expectations from the National CyberDrill? Which organizations will participate in this event?
By adhering to established guidelines and protocols, organizations can fortify their defences against cyber threats, mitigate vulnerabilities, and promote a culture of proactive cybersecurity measures. Through strategic investments in education, technology, and regulatory compliance, entities can cultivate resilience and responsiveness in the face of evolving cyber risks, thereby safeguarding critical assets and maintaining the integrity of digital infrastructure. Collaboration and knowledge-sharing initiatives further amplify the collective efficacy of cybersecurity efforts, fostering a unified front against cyber adversaries and facilitating continuous improvement in cybersecurity posture.
The Cyber Drill will unite under its roof security teams from Armenian critical infrastructure operators – both public and private, as well as National CIRTs from across the world. We intend this to be just one of the steps to put Armenia on the cybersecurity map.
The event will be attended by representatives of the Ministry of High-tech Industry of the Republic of Armenia and the Information Systems Agency of Armenia. Private sector participation is highly welcoming.
