Under its brand CYBER REUNION, the Réunion THD cybersecurity center is putting this emergency telephone number into operation and setting up various services to help local stakeholders – businesses, communities, associations – to take stock of the risk and strengthen their level of defense. A message addressed particularly to VSEs, most vulnerable to attacks.
“The objective of CYBER RÉUNION is to develop a local culture of cybersecurity, aligned with international standards, by uniting public and private forces to build a resilient digital ecosystem serving all Reunion Islanders.”, Norman Omarjee explained, vice-president of the Réunion Region and president of Réunion THD. The CYBER RÉUNION brand was officially presented on November 4. With the increase in cyberthreat, Reunion THD, public authority created by the Réunion Region for the development of very high speed, will see its scope of action expanded to include cybersecurity. “CYBER RÉUNION is in line with the action of the Réunion Region to develop digital technology”, summarizes Denis Fabregue, Director of THD Meeting. The new brand is the result of cooperation between the Region, Meeting THD and the National Information Systems Security Agency (TRAP). Armed arm of the State against cyber risk, ANSSI calls on local authorities to prevent cybercrime. This is how a Reunion resource center on cybersecurity, the fifteenth nationally, sees the light of day. This resource center ensures the dual mission of responding to cybersecurity incidents, with the CSIRT La Réunion*, and an upstream preventive intervention with EDIH La Réunion **, which plays the role of a one-stop shop to support the investment of VSE-SMEs in digital innovation and cyber resilience. Cyber Réunion becomes the standard of this defense and counter-attack shield against cybercrime.
The cyber-Samu of Reunion
Incident Response Center emergency number, 0262 974 999 allows you to be guided in the first steps to take, particularly on the legal and judicial levels, in case of attack. Restoring confidence, it puts you in touch with duly referenced cybersecurity providers for cleaning and restoring the attacked computer system. The CSIRT La Réunion is also responsible for monitoring IP and URL addresses, in particular of the “.re” domain. In case of vulnerability detected, the domain name owner receives a secure notification (around thirty have already been sent). Another part of the shield : the ANSSI MonAideCyber *** system deployed in all regions with a community of volunteer caregivers. Thanks to this device, CSIRT La Réunion facilitates cybersecurity diagnostics and allows a company or organization to know the priority actions to take to reduce its vulnerabilities. Finally, the CSIRT La Réunion has the mission of assessing the state and evolution of the threat based on the analysis of incidents affecting La Réunion.
Financial assistance for investment
Supporting Reunion organizations, promote local skills, co-finance technical and organizational cybersecurity security measures : This is the support deployed upstream by EDIH La Réunion to build the Réunion cybersecurity shield. Bringing together six partners (Reunion THD, Digital Meeting, CCI Meeting, CLUSIR KING, La Réunion Development, Reunion Island Technopole), EDIH La Réunion mobilizes the fabric of innovation. Benefiting from the support of the European Commission and the Réunion Region, it provides cyber defense with investment assistance which can prove decisive in taking action, since it can cover up to 65% of the amount of cybersecurity expenses.
* Computer security incident team.
** European Digital Innovation Hub.
*** https://www.monaidecyber.ssi.gouv.fr/
CYBER MEETING : cybersecurity within the reach of VSEs
Matthieu Druilhe’s explanations, deputy director, in charge of cybersecurity, Meeting THD.
Who exactly is the CYBER RÉUNION regional brand aimed at? ?
This umbrella brand covers the two systems of the CSIRT La Réunion and the EDIH La Réunion which are aimed at VSEs, SME, ETI, to local authorities and associations. Operators of vital importance or essential services, which are regulated by the military programming law and by the European NIS directive, are not among the beneficiaries of our services. Neither do individuals, although they find information on our website that may be useful to them.
Is it a kind of label applying to cybersecurity companies? ?
The incident response activity provides for connecting attack victims with cybersecurity providers. We have listed a certain number of service providers approved by us. Only these companies will be able to display a variation of the CYBER RÉUNION logo provided for this purpose.. Our website also presents, but here for purely informative purposes, a map of all cybersecurity solution and service providers.
Small businesses, who are the most vulnerable, are often hesitant to take the plunge due to the cost of cybersecurity. CYBER RÉUNION targets this audience in particular ?
This is clearly the objective : supporting small and medium-sized businesses in their cyber security. Large structures, they, have a risk culture and invest in cybersecurity. CYBER RÉUNION fills the lack of local actors, based in Reunion, for reception and first intervention with small structures in the event of an incident, and to help them make the right decisions to protect themselves.
What CYBER RÉUNION services are already operational ?
The incident response service is operational, with its emergency number, since November 5. Regarding proactive services, we ensure non-intrusive work, completely legal, monitoring of Reunion websites and the IP addresses associated with them to identify potential critical vulnerabilities on these IP addresses. In case of failure, we are working to identify the structure underlying this IP address. We send the IT director or general manager a message by email asking them to acknowledge receipt, before transmitting the details of the vulnerability and the methods for correcting it. If we cannot find the structure concerned, we send the information back to the telecom operator that owns the IP address.
Does the 65% cyber investment aid also cover the cost of services provided by cybersecurity companies after attacks? ?
Non. This European aid only encourages preventive action upstream. It is based on the plan of technical and organizational security measures developed from the diagnosis of the company's level of cybersecurity.. These are the measures that can be financed at 65%. This system will be operational at the beginning of next year.
When calling the emergency number, is the confidentiality of the reported facts guaranteed? ?
Completely. Confidentiality and security are fundamental issues for us. The ethical charter governing our activities takes these issues very specifically into account.. Our tools are extremely secure, our system is subject to regular audits, we are monitored by ANSSI and we work in cooperation with the security forces. All this is explained on our website.
MORE INFORMATION ON : CYBER-REUNION.FR
Free emergency number : 0262 974 999, Monday to Friday 9 a.m. to 12 p.m. and 1 p.m. to 5 p.m.. Outside business hours, calls should be sent to CERT-FR, the government incident response center, au 3218 (free service + price of a call) or at + 33 09 70 83 32 18 (7 days a week, Round the clock). Automatic transfer of calls from the Reunion emergency number to CERT FR will soon be implemented.
