Innovation cybersecurity
Ensuring the sector is resilient
Cybercriminals use the latest technologies, which the SURF organisation, together with its members, analyses and uses in defence against attacks. As a network service provider, the SURF organisation has the capabilities to detect and mitigate attacks at an early stage. We do this partly by developing a fully-fledged SURFsoc (security operations centre), and with the further automation of information sharing and monitoring.
NBA maturity level 3
SURF also helps institutions to protect themselves and grow to a higher maturity level, with NBA maturity level 3 being the ambition of its members. A risk-based approach is central to this. In the Security Expertise Centre, we develop and share knowledge and experience. SURF also provides awareness and training programmes. The ambition is that the best people in the field of security want to work within our target group.
Cooperation is important
The sector can only be secure in (inter)national cooperation. We realise sovereignty and knowledge security in (inter)national cooperation, where parties such as GÉANT and the National Cyber Security Centre (NCSC) are important partners. Compliancy with (new) standards, directives and legislation are important pillars here.
Integral security policy
The sector pursues an integrated security policy, in which cyber security is considered in conjunction with other security issues, many of which share the same approach, as well as digital manifestations, such as social safety and worrying behaviour. Promoting knowledge security also requires attention and cooperation.
Roadmaps
Roadmaps around the innovation zone state of the art (cyber) security include expanding security services such as SURFsoc and network services, further developing the Security Expertise Centre to collect and share knowledge, to bring members to NBA maturity level 3, expanding participation in (inter)national consortia and tackling broader digital integral security issues.