Moldova Cybersecurity Rapid Assistance

Summary

The European Union introduced Rapid Assistance Project in Moldova to increase the cyber resilience of public sector organisations and key critical infrastructure sectors.

Details

Aim

The overall objective of this Rapid Assistance is to increase cyber resilience of public sector organisations and key critical infrastructure sectors.

The project aims to strengthen the capacity building of Moldovan stakeholders, enable to compile cybersecurity institutions’ legal frameworks, and bring them in line with the EU’s approach, standards and relevant legal policy framework, notably but not limited to the NIS Directive.

Context

Some contextual challenges for this projects are the proximity of Moldova to current geopolitical events (notably, the war in Ukraine), its vulnerable critical infrastructure as well as an unclear national cybersecurity governance model.

Under the project, the main target groups are government organisations, government officials and private sector entities (in charge of critical infrastructure).

The beneficiaries of the project are the Vice Prime Minister for Digitalization of the Republic of Moldova; the Public Institution Information Technology and Cybersecurity Service (STISC); the Ministry of Economy; the e-Government Agency of Moldova; the Security and Intelligence Service; the Ministry of Internal Affairs;  General Prosecution Office; and the Ministry of Foreign Affairs and European Integration.

Outcomes

– Strengthen the governmental structure to increase cyber resilience, by:

• • Providing support for the establishment of a functional governance model for cybersecurity and protection of critical infrastructure;
  • Providing advice on how to adjust the normative-legislative framework on cybersecurity;
  • Supporting public-private partnerships and the involvement of critical service providers in establishing the new cybersecurity governance model;
  • Developing the capacities of the Government for quick responses to cyber and data security threats;
  • Increasing cyber awareness and hygiene across all layers of society, through awareness raising events and campaigns.

– Improve cybersecurity incident risk management by:

• • • Ensuring secure ICT product lifecycle and defining a Cyber Security Framework;
    • Describing methodology for risk assessment and classification of information systems and data;
    • Developing and applying, in practice, Guidelines for Business Continuity Planning;
    • Supporting the development of the cybersecurity operations center and information-sharing platform;
    • Developing the technical skills of cybersecurity experts of governmental agencies and critical service providers through technical cybersecurity exercises.