Participation in the Cyber Izazov 2020 exercise organized by the Serbian Armed Forces

The representatives of the Information Security Services Education in Serbia (ISSES) Erasmus+ Capacity Building in the field of Higher Education (CBHE) project took an active part in the Cyber Izazov 2020 cybersecurity exercise organized by the Serbian Armed Forces. Our team collaborated in the preparation of this event, which consisted of two tracks: track 1 for general IT security orchestrated by Microsoft and track 2 with three SCADA security scenarios prepared by the ISSES team and accompanied by a cyber-physical system. The physical component consisted of a Feedback Instruments process table with a heater, heat exchanger, pump, valve and multiple temperature and flow measurements used as a substitute for a real-life power plant facing a hacker attack. The system contained a programmable logic controller (PLC), a remote terminal unit (RTU) and it was supervised via the InView cloud-based supervisory control and data acquisition (SCADA) solution developed by Indas, a Novi Sad-based company focusing on solutions in the industrial control and automation domain. The Cyber Izazov 2020 exercise followed the Cyber Tesla 2019 event in which our team participated in 2019 as well. The representatives of multiple cybersecurity stakeholders in the government and private sectors were members of the Blue Teams solving our SCADA security scenarios, e.g. Serbian Armed Forces, Ministry of Interior, Ministry of Trade, Tourism and Telecommunications, Republic Agency for Electronic Communications and Postal Services, National CERT, etc. The 3-day event was affected by the covid pandemic and it had to be transformed into an online form held in the November 23-25 period.