AN INTEGRATED CYBER SECURITY RISK & RESILIENCE MANAGEMENT PLATFORM, WITH HOLISTIC SITUATIONAL AWARENESS, INCIDENT RESPONSE & PREPAREDNESS CAPABILITIES
Challenge
With the increasing use of digital technologies, applications and services, cybersecurity incidents have become more frequent, diverse and impactful. According to the 2021 Threat Landscape report by the European Union Agency for Cybersecurity (ENISA), assessing and interpreting cybersecurity risks has become more difficult due to the growing complexity of the threat landscape, the adversarial ecosystem and the expansion of attack surfaces. The report also noted an increase in sophisticated, targeted ransomware in the public sector, critical infrastructures, and other vital industries, as well as an increased prevalence of hybrid threats that combine both cyber and physical dimensions. The 2022 Threat Landscape report highlights the impact of geopolitical tensions, such as the Russian-Ukraine conflict, and a common trend for state-sponsored threat actors and cyber criminals to increasingly focus on supply chain compromises and Operational Technology (OT) assets. Considering the above, efforts are underway in the European Union to establish an acceptable baseline security and privacy capacity across organizations, with an expected emphasis on Operators of Essential Services and Member State actors entrusted with cybersecurity. Situational awareness, incident response, and preparedness are essential for effective crisis management, cybersecurity resilience and for driving strategic and political decisions to tackle the threats that loom over the well-being of the EU.
To address these challenges, SYNAPSE aims to design, develop & deliver an Integrated Cyber Security Risk & Resilience Management Platform with holistic Situational Awareness, Incident Response & Preparedness capabilities.
Objectives
To develop comprehensive and integrated technical & economic risk assessment capabilities, covering all asset types & business processes of the protected organization, and enabling the holistic management of security, privacy & business continuity risks, not only at the technical but also at an economic level.
To develop trustworthy, AI-enhanced Situational Awareness capabilities, with ML model sharing support, facilitating proactive & reactive response recommendation & prioritization.
To develop Response & Preparedness capabilities, including the capacity for cybersecurity orchestration, automation and response & the capacity for defining & executing hands-on, realistic training.
To develop and offer interoperable sharing mechanisms for information exchange, alerting, and reporting, enabling collaboration and coordination across private and public sector cybersecurity actors at the national and EU levels.
Integrate, deliver, demonstrate, and validate the SYNAPSE platform at TRL 7 in the context of 4 pilots
To maximize the project’s impact and results’ uptake, creating an open & sustainable solution.
Our Role
Within SYNAPSE, EUNOMIA's primary role is to ensure compliance by analyzing the project's legal and ethics requirements and implementing evidence-based procedures for compliance monitoring. EUNOMIA will also contribute to the specification of the SYNAPSE architecture by analyzing the EU's intricate regulatory framework concerning the cybersecurity and resilience of digital infrastructures along with the relevant information sharing, alerting and reporting requirements.