NCCC conducts Vulnerability Management training for cybersecurity specialists of the Defence Intelligence Agency
The National Coordination Centre for Cybersecurity under the National Security and Defence Council of Ukraine, with the support of the US Department of State and CRDF Global in Ukraine, conducted a Vulnerability Management Programme (VDP) for cybersecurity specialists from regional military administrations. This is the thirteenth edition of the VDP programme, which has been attended by representatives from all regions of Ukraine.
Such events are aimed at improving practical skills in identifying vulnerabilities in information systems and ensuring comprehensive cyber defence in key cybersecurity entities, government agencies, critical infrastructure facilities and other organisations in the framework of public-private partnerships.
"Today, Ukraine can be proud to have one of the most powerful cybersecurity systems in the world. And the real foundation of this system is people - highly qualified specialists are the most important component of our cybersecurity. Without your expertise and readiness to respond to any cyber incident, even the most advanced software tools, effective procedures and legislative mechanisms will be meaningless. This programme is not limited to training and practical skills. An important part of it is also the development of horizontal links, as this makes cooperation more effective and the response to cyber threats more coordinated and prompt," said Natalia Tkachuk, Head of the Information Security and Cybersecurity Service of the National Security and Defence Council of Ukraine, Secretary of the NCCC.
As part of the programme, the specialists took a two-month theoretical course and participated in two cyber competitions (CTF), during which they applied their knowledge through simulation exercises and practical cases. The tasks were developed based on scenarios of real-life cyber incidents that specialists face in the course of their daily duties. The winners of the final CTF received certificates for additional training to improve their skills.
The experience gained will allow the specialists to improve their practical level of knowledge in conducting a comprehensive analysis of the cybersecurity of their institutions and understand the principles and approaches used by attackers in conducting cyberattacks.