Søren Egede, the Industrial Cibersecurity Center Coordinator in Denmark (CCI Coordinators Team), helps us to get in context of the state of the industrial cybersecurity in his country, and to do so, he shares with us his impressions.

He describes the level of sensitivity of industrial organizations in his country according to the following percentages:

He also affirms that the trend of recent years has exponentially grown.

Denmark counts with local and national public bodies promoting an adequate legal framework, in order to ensure the progressive incorporation of industrial cybersecurity measures in national presence companies (mainly critical infrastructure). The main organizations are:

• Danish Energy Agency
• CFCS - National Cert
• Health Data Protection Agency
• Transport Agency

Among the main national laws and regulations affecting in this context in Denmark, Søren Egede mentions:

• NIS Directive (OES) one for each sector

Analysing the most widely adopted industrial cybersecurity measures by Denmark's organizations to protect industrial automation systems, Søren highlights the application of:

• Industrial cybersecurity consulting / advisory
• Internal security audits
• External security audits
• Network design and architectures
• Conventional firewalls
• Industrial firewalls
• IDS / IPS
• Backups
• SIEM (Security information and event management)
• Log correlation
• Whitelisting
• Antivirus

The CCI Coordinator in Denmark characterizes the industrial cybersecurity situation in his country with the following SWOT analysis: