The Framework for Threat Intelligence-based Ethical Red Teaming (TIBER-EU) enables European and national authorities to work with financial infrastructures and institutions (hereafter referred to collectively as “entities”) to put in place a programme to test and improve their resilience against sophisticated cyber attacks.
TIBER-EU is a common framework that delivers a controlled, bespoke, intelligence-led red team test of entities’ critical live production systems. Intelligence-led red team tests mimic the tactics, techniques and procedures of real-life threat actors who, on the basis of threat intelligence, are perceived as posing a genuine threat to entities.
An intelligence-led red team test involves the use of a variety of techniques to simulate an attack on an entity’s critical functions and underlying systems (i.e. its people, processes and technologies). It helps an entity to assess its protection, detection and response capabilities.
TIBER-EU therefore has the following core objectives:
The TIBER-EU framework has been designed for use at entities which are part of the core financial infrastructure, whether at national or at European level. However, it can also be used for any type or size of entity across the financial and other sectors.
It is up to the relevant authorities – in consultation with the entities under their responsibility – to determine whether and when TIBER-EU tests are to be performed.
Further information is available here: https://www.ecb.europa.eu/pub/pdf/other/ecb.tiber_eu_framework.en.pdf