Cybersecurity clusters are a form of public-private partnership (PPP) in cybersecurity that integrates the resources, capabilities, and expertise of industry, academic institutions, and government within a national cybersecurity ecosystem. This is achieved through information sharing, addressing workforce challenges, creating networking opportunities, and conducting research and development (R&D).
Clusters:
Foster innovation by developing, testing, and implementing new technologies as well as testing and launching certification programs.
Support businesses by helping small and medium enterprises (SMEs) enter the market and providing access to financing, training, and resources. They stimulate collaboration by establishing connections between cluster members (companies, universities, researchers) and creating platforms for knowledge sharing and best practices.
Focus on human capital development by organizing training and skill-upgrading programs, creating employment opportunities in high-tech sectors.
Support market development by enhancing industry competitiveness and facilitating access to international markets.
Shape standards and infrastructure policies by creating joint labs, research centers, and testing platforms while providing access to specialized equipment.
Enhance cybersecurity by coordinating efforts to protect against cyber threats.
Not all cybersecurity PPP structures functioning as clusters include the term "cluster" in their names. Instead, "cluster" serves as a descriptive characteristic, identifying various types of PPPs as clusters.
Ireland
The Cyber Ireland National Initiative for Cybersecurity Education (Cyber Ireland) was developed based on the National Institute of Standards and Technology's (NIST) Workforce Framework for Cybersecurity (NICE Framework). Established in 2019 with support from IDA Ireland, Cyber Ireland coordinates national cybersecurity strategy, promotes innovation, and fosters collaboration across sectors. Members include companies, research institutions, and public organizations in the field of cybersecurity, alongside startups and universities. Membership requires a formal application.
Cyber Ireland provides recommendations on national cybersecurity policy, develops training programs, and facilitates collaboration between businesses and research centers to create new cybersecurity solutions. For instance, partnerships with Cork Institute of Technology (CIT) and University College Cork (UCC) have led to innovations in cloud environment cybersecurity.
The initiative also launched upskilling programs, such as a certification program for cybersecurity specialists, aiding SMEs in developing cybersecurity strategies and enhancing their workforce. Cyber Ireland has successfully established regional cybersecurity clusters in Cork and Limerick.
United Kingdom
The UK Cyber Cluster Collaboration (UKC3) Network supports national cluster leaders across the UK, creating a unified operational framework for cyber clusters. This includes shared principles, objectives, and outcomes that clarify the mission and goals of the clusters, enabling stakeholders to better support and grow their local cyber ecosystems.
One key initiative is "Industry 100", which fosters collaboration between the National Cyber Security Centre (NCSC) and UK industry. It allows private sector representatives to work part-time with the NCSC (e.g., one day per week/month). The candidates’ employers continue to pay their salaries during this period, ensuring organizational independence.
Latvia
The Information Technology and Information Systems Security Experts Group (DEG) unites experts from various national organizations, including the private sector. Established by the Latvian government with support from the Ministry of Defense, DEG coordinates the implementation of the national cybersecurity strategy and addresses information system security issues. Members include representatives from public institutions, the private sector, and academia with expertise in IT and cybersecurity, selected based on professional experience. DEG serves as an advisory body for developing strategies and technologies in cybersecurity, facilitating information sharing on cyber threats, and supporting professional development. It also strengthens the national CERT.LV (Computer Emergency Response Team).
Netherlands
Countries hosting multinational companies often face challenges in sharing information, particularly regarding cyber threats. The "Circle of Trust" initiative in the Netherlands addresses these issues. This cluster connects the CERTs of ten multinational companies with the National Cyber Security Centre, providing a secure platform for sharing cybersecurity information, supply chain risks, and talent development. The "Circle of Trust" complements rather than replaces national or sectoral ISACs (Information Sharing and Analysis Centers), enabling efficient trust-building and information-sharing among national and international participants, especially in critical sectors.
Lessons for Ukraine
Building effective PPPs in cybersecurity remains a pressing issue for Ukraine, as highlighted since the adoption of the Law on the Basic Principles of Cybersecurity of Ukraine in 2017. Despite the inclusion of PPP tasks in the Cybersecurity Strategy of Ukraine (2021), most initiatives lack systematic implementation. The situational public-private cooperation triggered by the 2022 full-scale war has yet to develop institutional characteristics, largely due to unclear goals and organizational forms. International experiences can be adapted to Ukraine. For example:
Establishing cybersecurity hubs for startups and innovation (similar to Cyber Ireland) could stimulate technological advancements by integrating private and academic sectors.
Adapting the UK's "Industry 100" initiative could help involve cyber volunteers in public sector cybersecurity efforts and foster collaboration between public bodies and private professionals, addressing staffing shortages.
The Latvian and Dutch models provide a basis for creating sector-specific information-sharing systems to enhance cyber incident preparedness.
Ukraine’s limited cybersecurity resources, compounded by the war, make international adaptation crucial for addressing its unique challenges.
Get quality and up-to-date analysis from NISS in a format convenient for you:
- read us in Telegram
- listen to us on Google Podcast
- watch us on YouTube
Photo: NISS