Created in 2017, Naval Group’s CERT is responsible for identifying, analysing, anticipating and controlling cyber risks. They rapidly joined the TF-CSIRT, a working group that encourages European collaboration in the field. “Given that cyber threats know no bounds, joining a worldwide network such as FIRST was naturally the next step for us”, explains Julien Vignolles, in charge of responding to incidents reported to the CERT.
A demanding membership process
Julien headed the FIRST membership application process with determination and perseverance, two drivers indispensable to success, according to Francis Hauguet, in charge of Threat Management in the CERT: “We needed to identify two sponsors from outside Naval Group, to carry out an in-depth audit and testify to the maturity of our procedures in terms of cybersecurity, thus attesting to the trust placed in us. We finalised our application in February and learned of the results on 9 June”.
Trust, the key word
For Julien, as for Francis, being accepted as a member of FIRST is a matter of pride! This network brings together about 750 incident response teams worldwide, roughly twenty of which are in France. “This reflects the extent of our investment and the high level of maturity expected in order to be accredited by FIRST. Our membership to this worldwide network is a serious and long-term commitment”, adds Francis Hauguet.
An asset to countering threats effectively
Over and above sharing cutting-edge knowledge on new cyber standards, the evolution of threats as well as the tools and methods implemented to identify and combat these, FIRST opens the doors to exclusive conferences enriched by feedback following real attacks, providing inside information on new attackers. “We were given an in-depth debrief on how a network of cyber criminals was brought down and given important detailed information on the nature of the response to this threat”, specifies Julien Vignolles.
Access to this kind of information boosts the Naval Group CERT’s effectiveness in its contribution to cyberdefence, not only for our information systems but also for our programs. This knowledge of attackers, their objectives and their way of working contributes to raising the overall level of Naval Group’s cyber performance.
A confidential network
One of FIRST’s strengths lies in the confidentiality of information exchanged, thus allowing its members to keep a step ahead of attackers. “FIRST offers a forum sharing exclusive information”, explains Julien. “It is vital to keep the information we have under wraps”, emphasizes Francis. Practically speaking, membership with FIRST enables us to better understand the modus operandi of groups of attackers who may undermine Naval Group’s or our customers’ interests, either by means of industrial espionage or by attempting to reduce our operational availability through acts of cyber-sabotage.