The EU-supported CyberExchange project is like Erasmus for CERTs/CSIRTs in the EU. CERT staff can join other participating CERTs three days to two weeks and enhance the relations as well as facilitate the know how exchange. Two different types of exchanges are possible: In "Fellowships" an employee is sent to another participating CERT/CSIRT to gain new skills and experience and relays them at the home organization to colleagues. The other visit type is a "Technical Assistance Visit" where one person travels to another CERT/CSIRT to bringing knowledge about a specific tool or process. CERT.at was both a sending and a receiving party.
“Enhancing Cybersecurity in Austria" (2018-AT-IA-0111)
In 2018 CERT.at applied for a follow-up project to "Strengthening the CERT Capacity and IT security readiness in Austria" (CEF 2016-AT-IA-0089) another EU-supported project “Enhancing Cybersecurity in Austria" (2018-AT-IA-0111) as part of the Connecting Europe Facilities (CEF) program. It has been accepted in full amount and implies a 75% funding of the costs. The planning project duration is from september 2019 to august 2021.
It enhances human ressources, trainings, tool development as well as extensions of the server and security architecture of CERT.at.
The project covers internal enhancements as well as adaptions for internation collaboration with European CERTs. For example the integration and inclusion in "MeliCERTes", another EU-funded project for collaboration between European CERTs is a major part of the project.
A special focus is the research (Data Science) and the automation of existing data sets and the extension of own data sourcesfor incident management in cooperation with the Research & Development Team ("R&D") of der nic.at.
Last but not least the further development of IntelMQ in the international context as well as in cooperation with CERT.pl's tool "n6" is supported.
Participation in research projects
CERT.at takes part in the project "InduSec" stared in 2019 by SBA Research. Most notably the focus is to level IT und OT in respect to security. More information can be found at the Webseite of SBA Research.
CERT.at participates in Austrian Cyber Crisis Support Activities (ACCSA), which aim to prepare state-level actors in the national cyber-crisismanagement ("Cyber-Krisenmanagement", CKM) for cyber-crisis with comprehensive teaching-, training- and analysis-concepts to minimize reaction times and error rates in case of real cyber-crisis. More details can be found at the Webseite of KIRAS.