21. 9. 2021

ČEZ plans to go after hackers. It puts tens of millions into increasing its cyber security every year

• Last year, ČEZ detected 6.5 times more suspicious activity in its networks than three years ago.

• The newly launched security monitoring centre – the iSOC (Integrated Security Operations Center) oversees the protection of ČEZ Group in terms of physical, information, and cyber security.

• The protection of critical information infrastructure in the Czech Republic is one of the priorities of the newly established National Coordination Centre for Research and Development in the Field of Cyber Security.

The energy company ČEZ opened its new Integrated Security Operations Center – iSOC, which oversees the cyber security of ČEZ Group’s information systems, in the presence of senior representatives of the National Cyber and Information Security Agency (NÚKIB), Military Intelligence (VZ), and Czech Police (PČR). The centre’s task is not only to detect security events and incidents and activate the necessary countermeasures as quickly as possible, but also to oversee their effective resolution and, above all, to prevent security events in the future.

The launch of the iSOC centre has completed one of the stages of the comprehensive improvement of cyber security at ČEZ Group, which started in 2016.  It involved primarily the setting up cybersecurity processes, including ISMS (Information Security Management System) certification, raising security awareness among employees, building teams of cyber security specialists, and implementing numerous technical measures.

How does it all work?  Security log data from office, technological, and security systems of the entire ČEZ Group travel on-line to the new centre.  The information gathered by modern security technologies is immediately evaluated by iSOC operators and specialists of the ČEZ Group’s Security Department.  When necessary, they consult the outputs with NÚKIB, VZ, and PČR security specialists.  The synergy of properly set up processes, competent and highly qualified people, and modern technology makes it possible to reduce the risk of threats, to quickly take effective measures to eliminate attacks, and prevent economic losses.

“We take cyber security threats and risks very seriously.  We want to be a leader in this area and therefore we continuously strengthen the security of our systems against cyber attacks.  Thus far, we have always faired well, but there can never be one-hundred-percent satisfaction in this discipline.  We must keep updating our security measures, such as to ensure that they stand up to to evolving threats.  We are cooperating with a wider range of partners, led by the NÚKIB, Military Intelligence, and the National Headquarters for Combatting Organised Crime of the Police of the Czech Republic.  In the coming years, we expect to spend hundreds of millions of crowns in this area,” says Daniel Beneš, Chairman of the Board of Directors and CEO of ČEZ.

“We have repeatedly stressed two things: that cyber security must be addressed at the level of top management and that cyber security is based on the cooperation of all stakeholders.  In our experience, ČEZ has successfully striven to fulfil both, and the newly opened integrated security monitoring centre, which will also enable a more comprehensive approach to cyber security, by linking different areas of security, is proof of this,” says Lukáš Kintr, Deputy of NÚKIB’s National Cyber Security Centre Section.

Over the past few years, the number of alerts, warnings identified and evaluated by ČEZ security monitoring as a potential cyber threat, has increased dramatically. Last year’s 19,971 cases are 6.5 times more than in 2017.  Therefore, ČEZ Group keeps strengthening its cyber defences.  Cyber security has also become an integral part of all recent investment projects, for example, the renewal of the technical system for the physical protection of the Dukovany nuclear power plant, the construction of a modern data centre at Tušimice, or the new technological control centre for hydroelectric power plants in Štěchovice.

  • In 2017, global losses from cyber crime amounted to USD 1.5 billion, last year they up to USD 4.2 billion.
  • The number of crimes in this category in the Czech Republic was 8,417, which is 3,073 more than three years prior.
  • The number of attacks on hospitals, state administration and local self-administration networks, and larger industrial enterprises has increased.

In the Czech Republic, ensuring cyber security is the responsibility of the NÚKIB.  The line of defence is provided by the Military Intelligence Service, which falls under the Ministry of Defence.  The National Coordination Centre for Research and Development in the Field of Cyber Security should fall under the European Cybersecurity Industrial, Technology and Research Competence Centre, which coordinates the network of national coordination centres within the EU.

DID YOU KNOW THAT…
  • … only 33 percent of Czech companies have a comprehensive security strategy? (source: IDC)
  • … only 25% of employees in the Czech Republic have undergone cyber security training offered by their company (source: Kaspersky)
  • … last year, hackers attacked every fifth hospital in the Czech Republic (source: Police of the Czech Republic) and the number of attacks against medical facilities in Central Europe grew by 135% last year? (source: Check Point)
  • …theft of sensitive data, ransomware encrypting data, or DDoS that overwhelm companies’ websites are at the top of the ranking of global cyber crime? (source: Comsec Global)