In GiCP, we have always believed that a safer future is possible through the combination of technology and cybersecurity. And today, we want to share an exciting news in our mission towards this goal: our team has been selected for participation in the CIRMA project.

What exactly is the CIRMA Project and what will be GiCP’s contribution?

CIRMA

CIRMA (Cybersecurity and Artificial Intelligence Resilience for Madrid Community) is a research and development program in cybersecurity driven by the Community of Madrid, aiming to improve security and resilience against digital threats through advanced use of artificial intelligence (AI).

The project aims primarily at developing new tools, algorithms, and methodologies for:

  • Improving cyber-resilience of organizations and individuals.
  • Advancing AI techniques applicable to critical cybersecurity issues (such as malware or ransomware detection).
  • Investigating current limitations and vulnerabilities in AI-based systems with the aim of increasing their robustness and security.

CIRMA will address several key aspects:

Development of advanced Natural Language Processing models for specific applications.
Improvement of early detection and response to cyber attacks using AI.
Exploitation of large data volumes through AI techniques.
Research on current limitations and weaknesses in existing AI systems.

The project is led by an interdisciplinary consortium including experts in cybersecurity, artificial intelligence, social networks, and sociology. Specific objectives are divided into four main areas:

  • Application of AI techniques to cyber-resilience.
  • Improvement of use of AI-based solutions for critical cybersecurity tasks.
  • Research on current limitations and vulnerabilities of existing AI systems with the aim to increase their security integrity.
    Use of intelligent tools for detection and containment malicious campaigns in social networks.

CIRMA has a planned duration of four years, including extensive work packages dedicated to dissemination and transfer results such as scientific publications, participation at international events, industrial collaborations. The project also prioritizes aspects like gender equality and critical analysis of ethical impact on its implementation.

The ultimate goal is significantly improving cybersecurity and resilience not only for institutions and companies but also for individual citizens in Madrid through innovative AI-based solutions.

Our Participation

In GiCP we are aware of the incredible potential that advanced technologies have in the field of cybersecurity. That’s why we feel deeply honored by our participation and critical role within this project as Research Group on Cybersecurity and Privacy Protection (GiCP-CSIC). Our goal is to contribute through development of metrics based on cybernetic analysis for evaluation procedures, design and validation both security policies and Continuity Plans.

Additionally, we will be responsible for applying advanced AI techniques in the process of developing LLMs (Large Language Models) tailored specifically for small and medium enterprises. These models are designed with a primary goal: to improve their cybersecurity resilience against ransomware attacks.

Our Values

In GiCP, scientific research that truly impacts people and organizations is what we’re passionate about. We firmly believe in:

  1. Innovation: Continuously seeking new ways to enhance cybersecurity.
  2. Commitment: Being committed from the start until completion of each project.
  3. Transparency: Striving to keep all stakeholders informed of our work and progress.

Activities at GiCP

As part of the CIRMA Project, we are undertaking several activities that align with overall objectives:

  • 1: AI-based automatic tool for evaluating cyber-resilience

We will develop and test techniques based on planning and LLMs to automate a set of auditing tools aimed at assessing the cyber-resilience of any organization. This effort is made with the primary goal: improving incident preparedness culture, especially among SMEs.

  • 2: Development of specialized LLM for ransomware crisis management

We will create an expert model that provides adequate handling during crises caused by ransomware attacks. This model aims to improve cyber-resilience and mitigate financial and reputational impacts.

  • 3: Application of reinforcement learning techniques and gamification in creating cybersecurity resilience plans and strategies

Using games, realistic scenarios, we provide practical tools for enhancing knowledge about cybersecurity issues.

  • 4: DLT protocols (Distributed Ledger Technology) for incident management and response in cyber-resilience

Contributions:

A Digital Twin Threat Survey

Open Source Projects:

spanish version here.