The COVID-19 pandemic is an example of a temporary situation when critical infrastructure (CI) operators had to operate with continuously changing conditions. The role of cyber infrastructure during pandemics, for example for the remote work or access to critical systems, has also changed. This resulted in frequent re-evaluation of risks and adaptations of security policies or mitigation measures. Use and sharing of cyber threat intelligence (CTI) proved to be valuable to stay up to date, but challenges related to trust and confidence emerged.
We designed and developed dynamic CTI to be used by CI operators for risk reassessment and improvement of resilience. Several enhancements will be validated in the forthcoming pilots in SUNRISE project.