European Investment Bank: The Creation of a Methodology to Identify Cyber Security Related Investments

EU

Challenge

The European Investment Bank required help to formulate a way of identifying the parts of projects, which can be considered to be ‘cybersecurity’ related, and to quantify those parts.

The main goals of the assignment were the following:

  • To undertake a review of the EIB’s sectoral notes that establish which types of cybersecurity related investments are eligible on the basis of the sectoral lending policies.
  • To refine the thinking/approach outlined in the notes, based on NRD Cyber Security’s experience in cybersecurity and propose an alternative approach if appropriate.
  • To quantify cybersecurity related investments for each project type in the different sectors and provide a methodology that could also be applied to other financiers and project promoters.
  • To confirm quantified figures through a targeted project promoter engagement, which will be managed by the Bank and by one or two other potential financing institutions.

Solution

NRD Cyber Security developed the following:

  • An approach for identifying cybersecurity related investments for each project type in the different sectors.
  • A report showing the cybersecurity related components of investment projects and their costs.
  • A definition of the most suitable metrics, and default values of cybersecurity related investments for each project type in the different sectors.
  • A final report based on the findings and conclusions of the assignment.

Other stories

Lemona Electronics strengthens the cyber resilience of its e-commerce electronics business through a partnership with NRD Cyber Security
Lemona Electronics strengthens the cyber resilience of its e-commerce electronics business through a partnership with NRD Cyber Security
National Health Insurance Fund (VLK) is working with NRD Cyber Security to strengthen its cyber resilience
National Health Insurance Fund (VLK) is working with NRD Cyber Security to strengthen its cyber resilience
Artea Bank enlisted the help of NRD Cyber Security to monitor cyber threats 24/7
Artea Bank enlisted the help of NRD Cyber Security to monitor cyber threats 24/7
Staticus enlisted the services of NRD Cyber Security for its Security Operations Centre (SOC)
Staticus enlisted the services of NRD Cyber Security for its Security Operations Centre (SOC)
The Acme Group sets high standards for cyber resilience and begins cooperation with NRD Cyber Security
The Acme Group sets high standards for cyber resilience and begins cooperation with NRD Cyber Security
Teltonika strengthens its competitive edge with a firm focus on cybersecurity through partnership with NRD Cyber Security
Teltonika strengthens its competitive edge with a firm focus on cybersecurity through partnership with NRD Cyber Security
Fostering cyber resilience in Bhutan
Fostering cyber resilience in Bhutan
National Cybersecurity Strategy and Action Plan for São Tomé and Príncipe
National Cybersecurity Strategy and Action Plan for São Tomé and Príncipe