- Cybersecurity
Asset management and contact details in the event of an incident, new developments in the Security Portal for Local Administrations
El Security Portal for Local Administrations of the Cybersecurity Agency of Catalonia has implemented two novelties that improve the management of some services provided by this platform. Specifically, the sections of asset management i contact details in the event of an incident, two functionalities that will allow you to manage vulnerabilities in the set of technological equipment (servers, computers and network elements) that each local body has and know who to contact quickly to respond to a cyber incident.
Through the escalation matrix, you can manage and keep up-to-date the assets that the Catalan Cybersecurity Agency's Security Analysis service analyzes to look for infrastructure vulnerabilities. The inventory of assets are IPs, ranges of IPs and URLs that refer to the servers of each body, such as, for example, the server where the website or the citizen's portal is hosted, among others. The provided IPs are scanned and processed and subsequently an infrastructure vulnerability report is generated, which proposes solutions to eliminate server vulnerabilities.
On the other hand, the contact data is the section where the general information of each body is collected and is what the Cybersecurity Agency of Catalonia uses to contact the bodies quickly and securely in the event of incidents of cyber security
The Security Portal for Local Administrations is part of CataloniaSOC, the public cyber security service that the Agency provides to all local bodies in the country. This service provides City Councils and Regional Councils with the most advanced cyber security tools and makes it easier for them to be better protected in an increasingly digital environment.
With CataloniaSOC, Local Administrations have protection focused on users and their work teams, regardless of where they are; they also have a centralized security service in the cloud, which allows them to reduce costs; they have access to a platform in a cloud environment with constant reviews and updates of security policies and have a Security Portal with reports, guides and training in cyber security, among other services.