Towards a Baltic Sea Region Strategy in Critical ... - Helsinki.fi
Towards a Baltic Sea Region Strategy in Critical ... - Helsinki.fi
Towards a Baltic Sea Region Strategy in Critical ... - Helsinki.fi
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
CRITICAL INFRASTRUCTURE PROTECTION IN THE BALTIC SEA REGION<br />
Wigert 2006). The holistic approach is visualized here <strong>in</strong> Figure 26, whereby<br />
multiple perspectives comb<strong>in</strong>e to produce common CIIP policy, with<strong>in</strong> an agreed<br />
framework of leadership, <strong>in</strong>teraction, coord<strong>in</strong>ation and distribution of<br />
responsibilities.<br />
Organizational/<strong>in</strong>stitutional dimension<br />
The actor groups or organizations that have a stake <strong>in</strong> CIIP strategy tend to be<br />
diverse due to the cross-sector presence of ICT. These organizations may belong to<br />
any one of the follow<strong>in</strong>g group<strong>in</strong>gs:<br />
• Public sector organizations: compris<strong>in</strong>g the government departments and<br />
agencies with the responsibility for ensur<strong>in</strong>g overall safety and security,<br />
cont<strong>in</strong>uity <strong>in</strong> the delivery of essential services and ma<strong>in</strong>tenance of a wellfunction<strong>in</strong>g<br />
economy. Example agencies <strong>in</strong> F<strong>in</strong>land whose <strong>in</strong>terests are<br />
aligned with CIIP objectives are: the F<strong>in</strong>nish Communications and<br />
Regulatory Authority (FICORA); the National Emergency Supply Agency<br />
(NESA); and the Steer<strong>in</strong>g Committee for Data Security <strong>in</strong> State<br />
Adm<strong>in</strong>istration (VAHTI).<br />
• Private sector organizations: <strong>in</strong>clud<strong>in</strong>g <strong>in</strong>formation <strong>in</strong>frastructure owners<br />
and operators, <strong>in</strong>formation and telecommunication equipment<br />
manufacturers and vendors, IT security solution providers, service<br />
providers, application developers, network planners and systems<br />
<strong>in</strong>tegrators, and enterprises of all sizes whose processes are heavily<br />
dependent on the use of ICT solutions and services.<br />
A key factor that strongly <strong>in</strong>fluences CIIP strategy revolves around the ownership<br />
and operation of the CII. In recent times the trend of privatiz<strong>in</strong>g critical<br />
(<strong>in</strong>formation) <strong>in</strong>frastructure <strong>in</strong> free market economies 82 has seen an <strong>in</strong>creased<br />
transfer <strong>in</strong> ownership from the public sector (government) towards the private<br />
sector (bus<strong>in</strong>ess). 83 Furthermore, deregulation measures widely adopted with<strong>in</strong> the<br />
ICT sector <strong>in</strong> the previous decade, have relaxed government restrictions result<strong>in</strong>g<br />
<strong>in</strong> <strong>in</strong>creased competition, higher ef<strong>fi</strong>ciency, cutt<strong>in</strong>g-edge <strong>in</strong>novations, affordable<br />
services for users, and bumper pro<strong>fi</strong>ts for ICT companies. Therefore, the private<br />
sector organizations are now relatively better positioned from a f<strong>in</strong>ancial, technical<br />
and operational standpo<strong>in</strong>t to carry out the practical implementation of various<br />
CIIP measures.<br />
Private sector organizations are now undergo<strong>in</strong>g signi<strong>fi</strong>cant changes through<br />
strategic actions, such as, consolidations and sp<strong>in</strong>-offs, value cha<strong>in</strong> unbundl<strong>in</strong>g and<br />
bus<strong>in</strong>ess process <strong>in</strong>/outsourc<strong>in</strong>g, alliances and jo<strong>in</strong>t ventures, and relocation to<br />
favourable environments. Furthermore, by adopt<strong>in</strong>g ICT solutions and embrac<strong>in</strong>g<br />
the Internet, more straightforward and value-added ways of <strong>in</strong>teraction have<br />
become possible, 84 result<strong>in</strong>g <strong>in</strong> a range of entirely new bus<strong>in</strong>ess models<br />
(Davenport and Short 1998). These actions are not limited to the private sector, as<br />
82 Majority (if not all) of the BSR countries possess strong market economy traits.<br />
83 There are few exceptions to the rule, most notably <strong>in</strong> the ownership and operation of national<br />
PSS networks by governments <strong>in</strong> the BSR.<br />
84 These private sector <strong>in</strong>teractions <strong>in</strong>clude B2B, B2C/C2B, B2G/G2B and C2C <strong>in</strong>teractions,<br />
where B stands for Bus<strong>in</strong>ess, C stands for Customer and G stands for Government.<br />
126 NORDREGIO REPORT 2007:5