Critical Infrastructure Protection & Resilience Europe

Gabriela Matei

Ms. Gabriela Matei
Analysis Team Manager
National CYBERINT Center
Romania

fullsizerender120

Gabriela Matei was born in Bucharest, Romania. Between 2003 and 2008 she attended the Electronics and Telecommunications Faculty of the Polytechnic University in Bucharest.

Since 2009 she has been working for the Romanian Intelligence Service’s technical branch, becoming an officer of the National Cyberint Center in 2010. She has worked as a threat intelligence analyst, holding various positions from junior to senior analyst and later as a team manager.

Ms. Matei was involved in various technical and awareness projects, one of them being a public communication campaign tailored for final year students in the largest universities in Romania. Also, Ms. Matei is the national representative in ENISA’s European Cyber Security Challenge steering committee.

In October 2016, Ms. Matei became national focal point in the Global Forum for Cyber Expertise (GFCE) initiative regarding coordinated vulnerabilities disclosure (CVD)

 

Romanian endeavors in cybersecurity – the National System for the Protection of the Critical IT&C Infrastructures against the Threats from Cyberspace

City power outage and cyber security, is there a link between the two? Nowadays we call it cyber-attack and it seems to be and increased presence in our monthly news. What can it be done to improve our infrastructure’s protection against breakdowns, information leakage or any kind of cyber threat? As a good start, along with a trained human resource, there should be a minimum of tools for collection, inspection, investigation and audit in critical IT infrastructures. Those are the milestones that Romania achieved with the National System for the Protection of the Critical IT&C Infrastructures against the Threats from Cyberspace. A 20 million Euros investment that helped secure over 50 public critical institutions that converged into a nationwide cybersecurity system architecture. The system that detects, blocks and reports attacks was implemented over a period of two years (2013 – 2015), and it included specialized training for over 200 public employees that handle the IT&C systems of governmental institutions. Some of the challenges in implementing the Project include the general lack of cybersecurity awareness and the resistance to change that characterizes the public sector, but also the relatively low cyber expertise level of employees. Another major challenge in implementing the project was the lack of involvement of the institutions management in achieving an acceptable level of cybersecurity.