STM Aims to be Globally Recognized Center of Excellence in Cyber Security
Defence Turkey: First of all, we’d like to thank you for giving us this opportunity. As you know, cyber security has become to be a very important issue for nations, organizations such as NATO and individuals. Due to its ever changing nature, it is a long-term subject that requires continuous attention. We know that STM has been working on cyber security for some time now. Could you please let us know about STM vision and goals related to cyber security and defence?
As you know, a part of STM’s mission is to develop long-term solutions with national assets which entail high technology and strategically critical know-how. As a corner stone, cyber security is one of the most critical aspects that require us to reflect our company’s vision when we consider the new threats and defence requirements in Turkey. Hence, our vision in the field of cyber security is to become a globally recognized Centre of Excellence. We aim to become a solution provider and a trusted partner in the area of integrated cyber security and defence from tactical to strategic level. We also plan to establish the necessary skilled manpower in the cyber domain with R&D activities, operational services and solution development. In the light of this vision, we established a technical team which solely works on cyber security. We already conducted several feasibility studies and prototype development activities for SSM, as well as R&D projects in EU context.
In addition, creation of a cyber domain solution eco-system in Turkey is also very important. We are also working closely with national solution providers and organizations and establishing long-term partnerships for joint solution development and R&D.
Defence Turkey: You mentioned about several feasibility studies and prototype development activities for SSM. Could you please give us more information about the goals and outcomes of these projects?
Since 2011, we have finalized many studies for SSM covering the different espects of cyber security in Turkey. Among them, may be the most important one is Integrated Cyber Security System project that started in 2012 under SSM’s guidance. The aim of this project was to analyse the needs and requirements of a holistic and integrated cyber defence system, to deliver a product-quality prototype and to deliver a comprehensive feasibility study report related to cyber security. As far as we know, it was the first and unique project in Turkey with such a context. The prototype system and the feasibility report have already been delivered to SSM by the end of 2013.
Both deliverables were very well received by SSM and other government organizations which have access to the deliverables. We are also pleased to see that our vision and solution is very much aligned with NATO’s Computer Incident Response Capability (NCIRC) vision where a similarly integrated cyber defence system has been developed and deployed.
Defence Turkey: In cyber security, establishment of awareness and cooperation between organizations, companies and societies is as important as product and solution development. What are the current activities of STM in both the national and international arena related to this matter?
As you well stated cooperation and awareness between different stakeholders of cyber security are very important. We are a member of Information Security Association of Turkey and we actively participate and contribute in the symposiums and conferences. In this respect, STM sponsored two major cyber security events in Turkey, namely ISC Turkey and Cyber Warfare 2014 Conferences. In the international arena, we are an active member of European Organization for Security (EOS) which is the organization that helps the European Commission in defining the cyber security related policies and roadmap. We have a good synergy with global technology companies and universities in the cyber domain and as a concrete result of our efforts; we are a partner of European Cyber Security Protection Alliance (CYSPA) project. We are also an active partner in NIS Platform, an establishment under European Network and Information Security Agency (ENISA), which is responsible for setting the cyber security principles and action plans of EU Commision. We believe that our efforts in international arena will not only bring success to us, but also to our partners in Turkey as well.
We are also closely following NATO’s Cyber Defence activities. In June 2014, we had a chance to observe NATO’s civil and military cyber defence establishment and visited NATO Computer Incident Response Capability (NCIRC) Center. During this visit, we were pleased to see that our integrated cyber defence vision and approach is very much in line with NCIRC project. As a result of this, we were invited to NATO’s Science and Technology Organization (STO) Cyber Situational Awareness Working Group to present STM’s Integrated Cyber Defence System prototype.
Defence Turkey: Due to the ever changing nature of the cyber threats, there seems to be a need for continuous research and development. Do you collaborate with academia related to cyber security?
The industry must cooperate with the universities in order to provide innovative solutions and have a highly skilled work force especially in the cyber domain. We cooperate with several Turkish and international universities which have an established cyber security expertise. We also make use of R&D funds provided by TUBİTAK and EU FP7 and Horizon 2020. With a correct R&D strategy and partnerships, such collaborations will help in the creation of a healthy eco-system where Turkey will become a provider of high technology solutions in cyber security.
We also started to establish a Cyber Security Lab in STM premises which will help us to conduct our R&D activities, perform exercises and as well as critical infrastructure simulations for very specific tests.
Defence Turkey: When it comes to cyber security, we see that many countries place an emphasis on development and deployment of national solutions and products. When we look from this perspective, how do you position STM in Turkey?
It is essential to develop and sustain a national cyber security industry eco-system. Cyber security has a very diverse landscape from a product and systems perspective and having such a sustainable eco-system is the only viable way to build national cyber security capabilities. Countries like Germany and China started to utilize nationally developed operating systems, applications and cyber security solutions in especially governmental agencies. They continuously encourage and fund national projects to strengthen their cyber security industry.
As STM, we build relations and cooperative networks within Turkish industry, universities and R&D departments. We even help some of our partners to export their products to international markets. Our strategy is to create long-term partnerships and be able to provide integrated cyber security solutions with high added value.
Defence Turkey: There is currently a National cyber security strategy and an action plan in place and there are several responsibilities assigned to governmental agencies, universities and industry. What will STM’s contribution be to the fulfilment of the goals listed in the action plan?
One of the most critical assets of cyber security is the skilled manpower. National Cyber Security Strategic Plan can only be successful if there is a sufficient amount of skilled resources that will operate the cyber operation and incident response centers. Currently, there is a huge gap in the necessary number of resources and the resources in hand. This shortage is not only Turkey’s problem but also a globally recognized issue. As STM, one of our goals is to provide such operational services to our customers with a dedicated and sophisticated technical team. STM’s Cyber Centre of Excellence ambition and Cyber Security Lab will be the key enabler in training these teams and make them ready for real-life challenges and sector-specific cyber security demands.
Defence Turkey: Thank you very much for this comprehensive interview. Are there any last thoughts and opinions you’d like to express?
Since its establishment in 1991, STM has been providing high technology solutions and engineering services to the Turkish Defence industry. We are dedicated to expand our services and solutions portfolio in the cyber security domain in order to fulfill the needs of the Turkish Armed Forces, NATO and government agencies in both the national and international arena. On behalf of STM, I’d like to thank to Defence Turkey for giving us this nice opportunity to express our opinion on such an important subject.
