The XXI All-Russian Forum "Information Security. Regulation. Technologies. Practice. Infobear". The event was dedicated to the issues of information security (IS) in strategically important sectors of the economy, the public sector and the defense industry. The conference participants paid special attention to real cases of combating new threats and the practice of import substitution in the information security sphere in the context of unprecedented restrictive measures imposed on Russia.The forum was attended by representatives of the Ministry of Finance, Roskomnadzor, the FSB of Russia, FSTEC of Russia, as well as the largest holdings and enterprises of the military-industrial complex, the public sector, energy, transport, communications, retail, developers and suppliers of information security services.
One of the key areas of information security this year, experts called ensuring the technological sovereignty of the country through import substitution of technological platforms, application software and information security tools.
The annual closed session of the Department of Security and Prevention of Corruption Offenses of Rostec State Corporation was held within the framework of the forum. The speaker of the business program was Igor Kalandadze, Head of Information Security, as well as experts from RT-Inform and IB Reform, Rostec's subsidiaries in the field of information security.
"In 2022, we are facing new challenges in the field of information security. The number of attacks by foreign hacker groups has sharply increased, the supply of foreign equipment and software has stopped, financial costs have arisen due to market instability, more than 80 certificates of the FSTEC of Russia have been revoked, the legislation in the field of information security has changed. All this required us to maximize the mobilization of efforts and cost–effective import substitution in the areas of information technology and information security," said Sergey Filippov, Deputy Director General for Security at RT-Inform.
To ensure import substitution of technological platforms, application software and information security tools, a center for approbation and testing operates on the basis of RT-Inform, which studies Russian analogues of foreign solutions, prepares an updated software standard and replacement recommendations for the Corporation's organizations.
"The landscape of cyber threats is changing rapidly, but the sphere of information security in Russia is undergoing rapid development. In order to solve our common tasks of information protection, it is important to constantly exchange expertise, relevant data and practices with colleagues," Vasily Popkov, Director of Information Security at RT–Inform, said in his speech.
At the stand of IB Reform, proprietary solutions in the field of information security within the framework of import substitution were demonstrated: RT Protect Endpoint Detection and Response for Windows (a system for detecting targeted attacks and complex threats), RT Protect antivirus for Linux, RT Protect KSH-4000 cryptosluse. Visitors of the stand could get acquainted with the RT link corporate communication platform, which is designed to replace WhatsApp and Telegram in the corporate segment.
In order to provide technological support for the corporate information security system of Rostec State Corporation and its organizations, a Single center for monitoring and responding to computer incidents has been created in IB Reform, which is planned to be accredited as the center of GosSOPKA (State System for Detecting, Preventing and Eliminating the Consequences of Computer Attacks). Currently, work is already underway to aggregate information about the latest vulnerabilities and attacks, on the basis of which the specialists of the center, under the supervision of the Rostec security Department, can carry out systematic and effective work on penetration testing and assessment of the level of security of the IT infrastructure.
Solutions and services of the Unified Information Security Competence Center have aroused great interest among both representatives of the Corporation's organizations and developer companies in the field of information security. Their high professional assessment shows the serious scientific and technical potential of Rostec companies, as well as the significant export potential of solutions in the field of information security.