There will come a point in the development and transition of a City into a Smart City where cyber security becomes paramount and for many cities that point may already have been reached. It is at this point a City must assess its ability to deal with a new threat landscape and prepare a strategy to do so. The key objectives of a Smart City Cyber Security Strategy must be to deliver a new or adapted operating model able to effectively direct, monitor and protect a diverse range of city domains, services and its citizens. As part of this, Smart cities will have crucial decisions to make as to whether to define dedicated security operations, joint or shared security and city operations or outsource all or part of the required capabilities.
The point of becoming a Smart City is to develop and release new connected technologies and services but that has the potential to increase the risk and threat of attacks. Depending upon the location, population size and scale of the city services, the strategy and operating model will then need to reflect the right range of cyber security capabilities to address this. The following are a series of steps to help the development of that strategy.
Step 1 – Identify Cyber Security Capabilities to meet strategic vision
Step 2 – Define the Criteria for each required capability
Step 3 – Align Standards and Regulation requirements
Step 4 – Define Functions, Actors, Roles and Responsibilities
Step 5 – Model the Capability domain
Step 6 – Integrate the Technology and Data requirements
Step 7 – Define the Service Model and Requirements
Step 8 – Define the Operating Model and supporting Views
Step 9 – Deliver the strategy through a Transformation Plan
Step 10 – Monitor in-life Change, Performance and Maturity development
| Further reading |
| Design Guides for Smart City Cyber Security Strategy |
Smart City Cyber Security 