Eviden's CYDERCO Project: Strengthening EU Cybersecurity Resilience
Monday, Oct 28, 2024 5:06 am ET
2min read Eviden, a leading digital, cloud, big data, and security company within the Atos Group, has taken the helm as coordinator for the CYDERCO (CYber DEtection, Response and Collaboration) project, funded by the European Cybersecurity Competence Center (ECCC). This European project, with a duration of 36 months, aims to develop, test, and validate a platform that enhances the detection and response capabilities of relevant entities, including private and national Security Operations Centers (SOCs), to combat cyber threats across the European Union.
The CYDERCO platform is designed to provide SOCs with critical information about threat actors, their Terms Techniques & Procedures (TTPs), and Indicators of Compromise (IoCs), fostering collaboration, efficiency, and proactivity in dealing with cyber-attacks. By combining Eviden's and ISEP's expertise in Detection & Response, the platform will offer several main features:
1. **Data Analytics Platform**: SOCs can detect, investigate, and respond to cybersecurity threats swiftly and efficiently using this platform, built with modern technologies for stability, scalability, and responsiveness.
2. **Network Traffic Analysis (NTA)**: NTA will monitor network activity to detect malware or abnormal network-level traffic, addressing one of the most common cybersecurity challenges.
3. **Host Intrusion Detection Service (HIDS)**: Extended host-based intrusion detection will be developed for multiple platforms, providing advanced detection capabilities to identify malicious activities such as rootkits and malware affecting servers and workstations.
4. **AI-driven Analytics**: Traditional SIEM-based security solutions lack efficiency in analyzing high volumes of varied data and cannot detect complex, targeted, or unknown attacks. AI-driven analytics will provide superior detection and defend against next-generation cyberattacks.
Eviden will coordinate the Threat Intelligence capabilities to achieve:
1. **Threat Intelligence Sharing**: Secure data sharing and synchronization of events among various entities will be enabled, allowing automatic synchronization of events and attributes among different instances.
2. **Threat Intelligence Enrichment**: Threat Intelligence correlation will be used to find and investigate relationships between various threat elements and attributes, such as malware, attack campaigns, or threat actors.
3. **Sighting Support**: SOC teams will be alerted when an indicator is present on a system or network, enabling proactive responses to cyber-attacks.
4. **Rapid Distribution**: Rapid deployment of signatures and countermeasures across various entities will be supported, allowing services and applications to gather granular indicators enforced by security controls across entities.
Alex Rusandu, BDS Global Product Director and CyberSec Services External Funding Head at Eviden, Atos Group, stated, "Eviden will leverage its expert knowledge in Incident Response and Threat Intelligence, along with its global services and solutions in cybersecurity, to meet CYDERCO's specific requirements." Dan Cîmpean, Director of the Romanian National Cyber Security Directorate, emphasized the project's progressive move toward bolstering cybersecurity resilience within the European Union. Isabel Praça, Coordinator Professor at ISEP and Senior Researcher at GECAD, and CYDERCO Coordinator, highlighted the project's strategic importance for the ISEP/GECAD team, allowing collaboration with leading companies and end-user testing and validation. Rodrigo Diaz Rodriguez, Head of Cybersecurity Laboratory, Atos Spain, believes CYDERCO will represent a pivotal advancement in fortifying cybersecurity resilience within the EU.
In conclusion, Eviden's CYDERCO project, funded by the European Cybersecurity Competence Center (ECCC), is poised to significantly enhance the EU's cybersecurity resilience by fostering collaboration, improving detection and response capabilities, and promoting the sharing of threat intelligence among relevant entities.
The CYDERCO platform is designed to provide SOCs with critical information about threat actors, their Terms Techniques & Procedures (TTPs), and Indicators of Compromise (IoCs), fostering collaboration, efficiency, and proactivity in dealing with cyber-attacks. By combining Eviden's and ISEP's expertise in Detection & Response, the platform will offer several main features:
1. **Data Analytics Platform**: SOCs can detect, investigate, and respond to cybersecurity threats swiftly and efficiently using this platform, built with modern technologies for stability, scalability, and responsiveness.
2. **Network Traffic Analysis (NTA)**: NTA will monitor network activity to detect malware or abnormal network-level traffic, addressing one of the most common cybersecurity challenges.
3. **Host Intrusion Detection Service (HIDS)**: Extended host-based intrusion detection will be developed for multiple platforms, providing advanced detection capabilities to identify malicious activities such as rootkits and malware affecting servers and workstations.
4. **AI-driven Analytics**: Traditional SIEM-based security solutions lack efficiency in analyzing high volumes of varied data and cannot detect complex, targeted, or unknown attacks. AI-driven analytics will provide superior detection and defend against next-generation cyberattacks.
Eviden will coordinate the Threat Intelligence capabilities to achieve:
1. **Threat Intelligence Sharing**: Secure data sharing and synchronization of events among various entities will be enabled, allowing automatic synchronization of events and attributes among different instances.
2. **Threat Intelligence Enrichment**: Threat Intelligence correlation will be used to find and investigate relationships between various threat elements and attributes, such as malware, attack campaigns, or threat actors.
3. **Sighting Support**: SOC teams will be alerted when an indicator is present on a system or network, enabling proactive responses to cyber-attacks.
4. **Rapid Distribution**: Rapid deployment of signatures and countermeasures across various entities will be supported, allowing services and applications to gather granular indicators enforced by security controls across entities.
Alex Rusandu, BDS Global Product Director and CyberSec Services External Funding Head at Eviden, Atos Group, stated, "Eviden will leverage its expert knowledge in Incident Response and Threat Intelligence, along with its global services and solutions in cybersecurity, to meet CYDERCO's specific requirements." Dan Cîmpean, Director of the Romanian National Cyber Security Directorate, emphasized the project's progressive move toward bolstering cybersecurity resilience within the European Union. Isabel Praça, Coordinator Professor at ISEP and Senior Researcher at GECAD, and CYDERCO Coordinator, highlighted the project's strategic importance for the ISEP/GECAD team, allowing collaboration with leading companies and end-user testing and validation. Rodrigo Diaz Rodriguez, Head of Cybersecurity Laboratory, Atos Spain, believes CYDERCO will represent a pivotal advancement in fortifying cybersecurity resilience within the EU.
In conclusion, Eviden's CYDERCO project, funded by the European Cybersecurity Competence Center (ECCC), is poised to significantly enhance the EU's cybersecurity resilience by fostering collaboration, improving detection and response capabilities, and promoting the sharing of threat intelligence among relevant entities.
Disclaimer: the above is a summary showing certain market information. AInvest is not responsible for any data errors, omissions or other information that may be displayed incorrectly as the data is derived from a third party source. Communications displaying market prices, data and other information available in this post are meant for informational purposes only and are not intended as an offer or solicitation for the purchase or sale of any security. Please do your own research when investing. All investments involve risk and the past performance of a security, or financial product does not guarantee future results or returns. Keep in mind that while diversification may help spread risk, it does not assure a profit, or protect against loss in a down market.
_f34cf3fb1747264156535.jpg)
