The Defence Forces and the Finnish Transport and Communications Agency started a cyber defence working group

The Defence Forces and the Traficom’s National Cyber Security Centre have established a multi-sector ISAC information sharing group (MIL-ISAC) which focuses on Defence system operations . The MIL-ISAC information sharing group has representatives from various enterprises that somehow contribute to the Finnish defence system. The MIL-ISAC group is starting off by forming a situational picture and sharing information among the group members.

ISAC information sharing groups (ISAC, Information Sharing and Analysis Centre) are cooperation bodies established for various sectors of cyber security. There are currently about 20 ISAC groups in Finland, involving hundreds of enterprises, communities and organizations. The National Cyber Security Centre uses the information produced by the ISAC groups also to build and maintain a situational picture of national cyber security.   The ISAC groups operate on a voluntary basis.

The purpose of the new MIL-ISAC group is to improve the defence system’s capacity to protect itself against different threats. The defence system refers to the Defence Forces and the enterprises and communities that support its operation. The members of the ISAC information sharing groups form an extensive national network that has an important role in the management of disruptions. In the event of disruptions, the groups and their members provide the network with their expertise, analysis resources, information sources and international connections.

– The Defence Forces is now better informed of potential threats to the defence system that it was before, and at the same time, all members of the network have a clearer picture. MIL-ISAC is a significant step for the Defence Forces, since the group serves to improve not just our but all network members’ situational picture and preparedness.   It is great that so many enterprises have chosen to participate in this initiative and wish to be involved in improving cyber defence as a part of comprehensive security, Lieutenant Colonel Jussi Tuovinen from the Defence Command Finland C5 Division says.

Tuovinen also says that the member list of the MIL-ISAC network is classified information, because the Defence Forces does not wish to disclose partners involved in this group. The MIL-ISAC group is now kicking off and will not be expanded in the near future. 

– We may consider new members at some point towards the end of 2025, when we have got the group working properly, Tuovinen adds.

ISAC groups provide sectors with good practices and networks

The National Cyber Security Centre has years of experience in administering various ISAC information sharing groups. The ISAC groups discuss confidentially cyber security matters, such as threats, phenomena and good practices. The groups also contribute to the development of cyber security in their sector and the society by, for example, carrying out risk analyses, conducting research, organizing exercises and providing instructions. The National Cyber Security Centre maintains the networks and enables sharing of information and contact details within various information sharing groups. 
 
– ISAC groups have provided various sectors with good practices and networks for cyber threat control. The new MIL-ISAC group is a slightly different, multi-sector group. The fact that the group covers several sectors makes it different from earlier groups. - I am confident that the new group will find its place in the network of existing groups and will be an asset in building a picture of national cyber security, Director-General of the National Cyber Security Centre Anssi Kärkkäinen says.