„Together against Cyber Threats: Enhancing Security Resilience through CTI Sharing” – meeting for Polish-British cyber cooperation


On March 8th in Krakow, a meeting dedicated to Polish-British cooperation in the field of cybersecurity took place. The event was organized by the Kosciuszko Institute in cooperation with the British Embassy in Warsaw. 

 

The main agenda item was a panel discussion entitled “Together against Cyber Threats: Enhancing Security Resilience through Cyber Threat Intelligence Sharing”. Cyber Threat Intelligence (CTI) is understood as the process of acquiring and processing information regarding threats in the cyber domain for a specific entity, organization, or state. This information can come from both internal and external sources. In the panel, led by Maciej Góra, Project Manager at the Kosciuszko Institute, representatives from the British and Polish government administrations, businesses, the scientific sector, and the military participated. 

The discussion began with a presentation by Crispian Wilson, Political Counselor at the British Embassy in Warsaw, who outlined the UK’s cybersecurity policy priorities for the coming years and the directions for Polish-British cooperation in cybersecurity policy and technology development. The UK representative emphasized Poland’s particular role in the Central and Eastern European region and the fruitful cooperation between the two countries within NATO, exemplified by the activation of the Tallinn Mechanism. He noted that the next step in institutional cooperation should be the exchange of intelligence data on cyber threats. 

Michał Pukaluk, Deputy Director in the Department of Cybersecurity at the Ministry of Digitization of the Republic of Poland, responded to questions about the involvement of the Polish government in acquiring, processing, and disseminating CTI data. He explained that the actions of the Polish government are focused on securing all levels of communication, including maintaining secure information and communication channels between members of the most important civilian and military institutions. In the context of international CTI data exchange, it is crucial to adopt a new, decentralized perspective, assuming institutionalized cooperation at the level of regional security systems, which is then extended to other systems in European regions. 

Robert Kośla, EMEA Chief Architect CYBER at Microsoft, diagnosed the main challenges and threats to CTI exchange and presented Microsoft’s strategy in cybersecurity and threat data sharing. Currently, one of the biggest challenges for cybersecurity is cyberattacks carried out by state actors (Russia, China, North Korea, Iran) and non-state actors (such as Hezbollah). In 2023 alone, Microsoft tracked 160 such attacks. Robert Kośla also referred to the war in Ukraine and Microsoft’s digital support for the Ukrainian armed and digital forces, which involves providing signals about Russian cyber activity. Microsoft is also responsible for building a cybersecurity ecosystem for states through project cooperation with the public sector. 

The military perspective on CTI was presented by Colonel Jarosław Wacko serving in the Cyber Defense Forces of the Republic of Poland. Currently, conventional military means still have a greater impact during open armed conflicts. However, it is important to recognize the growing threat in cyberspace, which can affect the destabilization of the entire security system of Poland and Europe. Therefore, increasing the ability to share CTI information requires taking security measures in this sphere. The Russian war in Ukraine has shown that information has become a new weapon, the control of which must be one of the elements of military strategy. At the same time, to fully utilize defensive potential, the private sector must increase its involvement in cooperation with the military to prevent gaps in data security structures. 

The academic perspective was presented by Ewelina Kasprzyk, representing the AGH University of Science and Technology in Krakow. Ewelina emphasized that Polish scientists have enormous potential and competencies recognized worldwide. The problem she highlighted is the disproportionately low interest in cooperation on the part of government institutions, which could benefit from and introduce innovative solutions into existing mechanisms and state structures of cybersecurity. This phenomenon is particularly visible in the West, where authorities trust academic centers and their recommendations are considered in the decision-making process. Universities are also pioneers in applying new methods of cyber defense. 

Thanks to the courtesy of the authorities of the City of Krakow, the event could take place at the Wielopolski Palace. 

After the panel discussion, a networking session was held, during which participants could establish direct contacts and deepen relations between the public, private, and academic sectors. The meeting, co-organized by the Kosciuszko Institute, enabled the exchange of knowledge in an atmosphere conducive to building lasting partnerships in the field of cybersecurity. Already today, we invite you to register for the next event dedicated to cybersecurity – CYBERSEC CEE FORUM & EXPO 2024 – the largest conference of this kind in the region.