Fact Sheet

Executive Summary Malicious cyber activity is occurring at an unprecedented scale with extraordinary sophistication. With the ever-present threat of an attack on telecommunications and other networks, both the Australian and New Zealand governments and nations around the globe are focusing on cyber security and taking action to ensure the safety and security of each nations infrastructure and its way of life. Cisco aims to address the global cyber security challenge head-on, aligning our efforts with innovative international progress indicators, advanced threat research and response, and transparent trust. We bring those together today, supporting the Cyber Readiness Index launch, the Threat Response, Intelligence, and Development (TRIAD) launch, and the Trustworthy Systems launch. Cyber Readiness Index 1.0 The Cyber Readiness Index 1.0 is a result of independent research conducted by Melissa Hathaway, President, Hathaway Global Strategies, and examines the top 35 countries that have embraced ICT and the Internet and then applies an objective methodology to evaluate each countrys maturity and commitment to cyber security. The Cyber Readiness Index (CRI) represents a new way of examining this problem and is designed to spark international discussion and inspire global interest in addressing the economic erosion from cyber insecurity that is holding back more robust economic growth. It measures five essential elements: did a country publish and execute on a national cyber security strategy; does the country have formal incident response capability; is the country committed to fighting against electronic crime; does the country have an effective information sharing mechanism; and is the country investing in cyber initiatives? Summary Statistics: G20 countries expect at least 4% GDP growth based on the direct and ubiquitous access to communications and ICT adoption rate. Some countries lead the CRI with action in all categories (Australia, Canada, The Netherlands, U.K. and U.S.), yet even these countries are experiencing GDP degradation due to cyber insecurity. 27 of 35 countries have a Cyber Security Strategy, yet few are measuring progress and even fewer have invested in the strategys successful outcome. 20 of 35 countries are committed by treaty to protect society from cybercrime by adopting appropriate legislation, fostering international co-operation, and combating criminal offenses, by facilitating their detection, investigation and prosecution at both the domestic and international levels. Few countries are investing in private-public information sharing exchanges and even fewer have aligned national R&D initiatives.

Source: Cyber Readiness Index 1.0 (Short URL: http://hvrd.me/19fuoaJ), Hathaway Global Strategies, LLC.

Fact Sheet
Cyber Readiness Index 1.0, Cont. Call to Action: Place cyber security on the G20 table as an agenda item. It is time to couple diplomacy with our national interest. The G20 represents 90% of global GDP, 80% of international trad e and 64% of the worlds population. The leaders of the G20 could simplify the cyber security conversation and focus the world on enabling GDP growth, while limiting GDP erosion. This approach has a built-in advantage in that its membership includes Brazil, Russia, India, China and South Africa (the BRICS) with equal voices at the diplomatic table. In fact, it may be the only international forum that could propagate a simple narrative that communicates why a sustainable cyberspace is linked to GDP growth for every nation. Source: Change the Conversation, Change the Venue and Change Our Future (URL: http://bit.ly/105tayV), Melissa Hathaway. Threat Response, Intelligence, and Development (TRIAD) launch With a commitment to three missions: Protect Cisco, Protect Cisco Products, and Protect Cisco Customers, the Threat Response, Intelligence, and Development (TRIAD) organization was formed to meet threats against each head-on. Innovations from the organization include the first fusion Cyber Security Operations Center (CSOC), which brings together the Cloud Security and Computer Security response teams at Cisco, the Cisco Trustworthy Systems initiative that encompasses the Cisco Secure Development Lifecycle, and the Cisco Threat Intelligence facilities. Call to Action: Learn more at https://blogs.cisco.com/tag/emerging-threats/ Working with Governments, Protecting Our Customers: Its All About Trust As a global business, Cisco is privileged to work with companies of all sizes and government at all levels across the world. We are fortunate to be trusted by our customers and we work really hard to maintain that trust. With the recent global concerns about security vulnerabilities and encryption standards, Ciscos been getting even closer with its customers and reinforcing how hard we work to build products they can trust from a vendor they can trust. We accomplish this by being very clear on Ciscos principles, business practices, engineering designs, supply chain, and trustworthiness. Cisco Helps Customers Protect Themselves: Every security program begins with awareness and education. You have to start by training people. Especially with cyber security, it is a constant learning process. Verify the trustworthiness of your vendors and production selection. Today, it is possible to address the hidden risk in choosing a vendor and reduce known risk while operating ICT infrastructures. This ideal a Trustworthy System can be achieved through inspection of: A vendors reputation: Are its product development processes measurable, with security check-points throughout the product life-cycle? Are its supply chain operational processes designed to minimize assembly risk? Is there a track record of achieving international security certifications? Call to Action: Learn more at http://www.cisco.com/web/solutions/trends/trustworthy_systems/index.html Biographies Melissa Hathaway, President, Hathaway Global Strategies Melissa Hathaway is President of Hathaway Global Strategies LLC and a Senior Advisor at Harvard Kennedy Schools Belfer Center. She serves as a Senior Advisor to Cisco on cyber and policy matters. She served in two U.S. presidential administrations, where she spearheaded the Cyberspace Policy Review for President Barack Obama and led the Comprehensive National Cybersecurity Initiative for President George W. Bush. John N. Stewart, Global Chief Security Officer, Cisco Systems In his 25-year career, Stewart has been a leader in expanding the definition of security, working with academic think-tanks, government, and numerous enterprises. He currently leads Ciscos Threat Response, Intelligence and Development (TRIAD) organization with the charter to protect Cisco from threat, protect Ciscos products from threat, and help protect Ciscos customers.