This week’s extract is taken from Toomas Viira’s book Lessons Learned – Critical Information Infrastructure Protection, which is a vital source of information and thought-provoking insights into potential issues within critical information infrastructure (CII).
Episode 5 – Critical Infrastructure: “There is no universal model that suits all countries; there is no universal model that suits all sectors; there is no universal model that suits all service providers. You must instead create the organisation, determine the roles and responsibilities of the parties, and monitor the system to make sure that it is working.”
The book offers 23 key lessons, including how to:
- Describe the critical infrastructure service and determine its service level;
- Identify and analyse the interconnections and dependencies of information systems;
- Create a functioning organisation to protect CII; and
- Train people to make sure they are aware of cyber threats and know the correct behaviour.