We produce a variety of situation awareness products for organisations and citizens. Situation awareness products provide our customers with up-to-date information about events and phenomena affecting cyber security.
When someone discovers a vulnerability or severe software error, vulnerability coordination assists them in cooperating with software manufacturers and system integrators.
Our aim is to make sure that information about vulnerabilities, related patches and updates, reaches everyone, including the end users of products. We want to ensure that as many major vulnerabilities as possible are patched and that fixes are applied.
Any findings need to be handled in a responsible manner as they may have far-reaching adverse consequences for people's privacy, possessions and business, and they may even affect national security. As a vulnerability coordinator, we promote responsible handling of vulnerability information during all stages of the vulnerability life cycle.
Interactive collaborative networks are vital for our operation. Members of collaborative groups can, depending on the nature of their organisation, offer their expertise, analysis resources, data resources or networks and international connections to the mutual benefit of the network.
Information and Analysis Centres (ISACs) are sector-wide information exchange groups that handle information security issues and phenomena in confidence, while increasing information security expertise in organisations. Information sharing in collaborative networks also benefit our situation awareness.
Information Sharing and Analysis Centres (ISAC) are collaborative groups between organisations in a certain sector. They meet regularly and have specified operating models and participants. ISACs allow the confidential exchange of information on information security issues between its members, increase information security expertise in organisations, and improve our situation awareness.
The NCSC-FI has set up information exchange groups for the following sectors:
- Internet service providers (ISPs)
- Chemical and forest industry
- Energy sector
- Food production and distribution
- Social welfare and healthcare
- Software manufacturers
- Central government
Kriittisten infrastruktuurisektorien valvontaviranomaisten yhteistyöryhmä
Interference cooperation working group (HÄTY)
The interference cooperation working group HÄTY (Häiriötilanteiden yhteistoimintaryhmä) assists Traficom in incident management and in harmonising measures required to control such incidents in society. HÄTY includes representatives of public authorities, telecommunications operators and electricity companies.
For more information about HÄTY activities, please contact us at firstname.lastname@example.org.
In addition to the above groups, we can set up and maintain other collaborative groups for issues related to information security and preparedness. The purpose of the Information Security Standardisation Network is to improve the opportunities of Finnish equipment manufacturers and service providers to influence European and international information security standards in order to promote the commercial availability, use and export of secure services and equipment that improve the confidentiality of communications.
For more information about the Information Security Standardisation Network, please contact us at email@example.com.
The NCSC-FI supports critical infrastructure providers’ cyber preparedness by providing exercise support services. Read more about cyber exercises.