4. e-Safe Cyber Security Summit with the theme “Cyber Security in Critical Infrastructures” was organized under the auspices of the Information Technologies and Communication Authority.
At the fourth edition of the “Cyber Security Summit,” where studies on cyber security conducted each year are discussed, Turkey's current status in the field of cyber security and its roadmap were addressed. In his opening speech at the program, Dr. Ömer Fatih Sayan, Deputy Minister of the Ministry of Transport and Infrastructure, stated that disruptive developments are occurring in the field of cyber security with the development of technology.
Emphasizing that they are targeting a Turkey that is competent in science, technology, and innovation in line with the 2023 vision, that produces, and that can increase its added value by relying on its own intellectual power, Sayan said, “We are all aware that the way to see our country among the world's top 10 economies in information technologies passes through research, development, and production in the fields of science and technology. We are determining our roadmaps and strategies that will further increase our competitiveness in the world in our digital development. In today's world, information and communication technologies have become the leading actor in development and progress for every sector. The security of electronic communication infrastructures and cyber security is a national security issue for countries.”
Drawing attention to the important studies they are conducting as the Ministry to ensure national cyber security and to develop and maintain it in line with technological developments, Sayan provided information about the studies with the following words: “Following our National Cyber Security Strategy and Action Plans covering the years 2013-2014 and 2016-2019, we have also completed the studies to create a new strategy and action plan in line with technological developments. In the preparation studies of the National Cyber Security Strategy and Action Plan covering the period 2020-2023, 67 institutions including public institutions and organizations, private sector, universities, and civil society organizations contributed. As a result of the studies carried out under the coordination of our Ministry, we have created the "National Cyber Security Strategy and Action Plan (2020-2023)" with the aim of advancing the gains achieved so far, reducing the effects of cyber threats, developing national capacity, creating a secure cyber environment, and placing our country at the top ranks internationally in the field of cyber security.”
Deputy Minister Sayan: We Want to Become a Brand in Cyber Security
Stating that they want to become a brand in cyber security, Sayan said, “In this document prepared with the vision of ‘having a cyber environment operating securely in our country and becoming a brand in cyber security internationally,’ our strategic objectives include the protection of critical infrastructures, development of our national capacity, security of next-generation technologies, and creation of domestic and national solutions.”
Underlining that Turkey is moving away from being a country that only consumes technology, Sayan said, “In this direction, within USOM (National Cyber Security Center); we are conducting studies to develop a cyber security awareness nationwide and to produce alarms, warnings, and announcements to prevent cyber threats. Additionally, we continue our activities to take control of incidents with on-site intervention teams in critical situations and to provide national coordination in response to cyber incidents. We have developed applications entirely with our own resources, with alternative costs exceeding millions of dollars. These applications, based on machine learning and artificial intelligence capabilities, to detect and prevent cyber threats against our country, are used most effectively by our cyber security analysts on duty 7/24. In short, our cyber security is in safe hands.”
Also making evaluations on how recent events affect our daily lives, Sayan listed the cyber security studies carried out in this process as follows: “In threat intelligence studies, signatures were created to detect fakes of the most known conference applications and threat hunting was conducted; 209 fake conference applications were detected and necessary actions were taken. Especially with the increase in remote working methods, remote management services (Remote Desktop, etc.) were scanned, and a total of 17,250 vulnerabilities related to these services and interfaces were detected, and necessary warnings were made to relevant public institutions and organizations through the SOME Communication Platform (SİP) and official letters. Scans are being conducted on domain names related to the COVID-19 virus using artificial intelligence. A threat intelligence report related to Covid-19 has been published via SİP; the report includes the examination of 42 malware samples and information on 569 malware. 814 malicious droppers and command-and-control centers related to Covid-19 have been blocked.”
President Karagözoğlu: Cyber Risks Are an Indispensable Part of Today's World
Information Technologies and Communication Authority President Ömer Abdullah Karagözoğlu also touched upon cyber risks being a part of our lives in today's world. Karagözoğlu said, “While individuals, companies, critical infrastructures, and states face serious cyber threats, cyber attacks are increasing day by day. Therefore, allocating more resources to combat cyber incidents is becoming an important issue. The information and communication technologies sector has not only become a sector on its own but also the main actor in the development and growth of other sectors, and today it has become the most important sector of the digital transformation age. The security of electronic communication infrastructures plays an important role in the security of other sectors such as energy, health, banking, and in the continuity of services.”
Reminding that they see cyber security as a part of national security due to risks that negatively affect social and economic life, Karagözoğlu said, “Unfortunately, in today's cyber world, it is not possible to provide absolute security. However, we believe that there are studies that need to be done to increase our cyber security level and preparedness. In this context, we have made and are making various regulations in the field of network and information security by our Institution. The first regulation in this area by our Institution is the Electronic Communication Security Regulation published in 2008. With this regulation, we imposed obligations on operators authorized by our Institution regarding compliance with TS ISO IEC 27001 standard, personnel security, physical security, software and hardware security.”
Recording that as an Institution, they are conducting a joint fight against malware in the field of cyber security, Karagözoğlu said, “We are making and will continue to make bilateral cooperation agreements with various countries in investigations regarding cyber criminals, organization of joint cyber security exercises, and cyber intelligence and information sharing. I think these cooperations will make great contributions to making our countries' cyber fields more secure. We are conducting important activities within BTK to train the human resources needed by our country in the field of cyber security.”
President Karagözoğlu also shared the following information about the studies carried out under the roof of USOM: “In the applied cyber security training laboratory, Fetih Cyber Training Ground, under USOM, participants are continuing to be provided with the opportunity to conduct individual cyber security tests and develop themselves in this regard. Thus, the aim is to elevate the participants' skills to higher levels, provide important services to our country, and contribute to our national cyber security. 141 people were given applied cyber security laboratory training in Cyber Training Ground trainings. In addition, online trainings are provided for high school and university students, new graduates, to be open to the public, and for SOMEs. In this scope, more than 4,500 participants have been brought together with training. In addition, in order to give professional qualification to the studies in the field of cyber security, cyber security personnel definitions were made by USOM together with the Vocational Qualifications Authority. In terms of capacity building, we see that our competitions named Cyber Star are quite effective in talent discovery. The Second Cyber Star competition was held with the participation of 3174 people. Participants are accepted to Cyber Star competitions without requiring a graduation condition, aiming to benefit to the maximum extent from our country's potential in the field of cyber security. We also employ some of those who are successful in these competitions at USOM.”