IMI

Reference framework

Within the framework of EU measures, on 7 October 2020, the Spanish state government approved Spain’s Recovery, Transformation and Resilience Plan (PRTR), which sets out the lines of action for modernising the Spanish economy and is structured around four areas: ecological transition, social and regional cohesion, digitalisation and gender equality. The PRTR was approved by the European Commission on 16 June 2021

Within this context, the City Council, through the IMI, is developing the Pla Reacciona, consisting of a series of procedures and solutions that will improve the City Council’s ability to respond to the rise in ransomware (encrypting software) attacks that the City Council experienced in 2020 and 2021.

Description

The IMI currently has a security backup environment for all of its servers and file storage systems distributed across and replicated in different geographically separated Data Processing Centres (DPCs).

Faced with the emergence of new security threats in the form of ransomware attacks that encrypt all data, changes need to be introduced to improve the model. One of these initiatives to improve the organisation's data recovery capability, now in the development phase, aims to establish an offline backup solution which will ensure an air gap between the this copy and the rest of the copies and computer systems that need to be protected.

Next Generation Line of Action: PRIORITY 1 Strategic Line of Action 5. STRENGTHENING CYBER-DEFENCE STRUCTURES IN BARCELONA CITY COUNCIL'S DIGITAL ENVIRONMENT