Threat Intelligence-based Ethical Red Teaming (TIBER)
Strengthening the cyber security and resilience of the financial system is a strategic priority for the Central Bank of Ireland.
TIBER-IE
In 2018, the ECB published the Threat Intelligence-based Ethical Red Teaming (TIBER-EU) Framework. The objective of the framework is to put in place a programme to test and improve the resilience of financial infrastructure and institutions, at national and European level, against sophisticated cyber-attacks.
Central Bank of Ireland is the designated authority for TIBER and DORA TLPT (Threat-Led Penetration Testing) in Ireland and formally adopted the TIBER framework as TIBER-IE in 2019.
The TIBER framework is designed to deliver a controlled, bespoke, intelligence-led Red Team test (ethical hacking) of financial infrastructures and institutions’ critical production systems. TIBER tests mimic the tactics, techniques and procedures (TTPs) of real-life threat actors who, on the basis of threat intelligence, are perceived as posing a genuine threat.
The outcome of a TIBER test is not a pass or fail; instead the test is intended as a learning exercise to reveal the strengths and weaknesses of the tested entity, enabling it to reach a higher level of cyber maturity.
DORA TLPT (Threat-Led Penetration Testing)
TIBER-IE was implemented as a voluntary framework in order to strengthen cyber resilience and financial stability. Since then, TIBER-IE has been revised following the entry into force of the Digital Operational Resilience Act (DORA) on 17 January 2025. The TIBER-IE national programme now includes TLPT mandated by DORA as well as voluntary TLPT assessments. The TIBER-EU framework has been updated to meet all requirements of DORA TLPT.
TIBER-EU guides and templates used in a TIBER-IE assessment are available on the ECB website. Supplemental TIBER-IE material is provided to the institution undergoing a TLPT at the beginning of each assessment.
Resources
Guides
Contact
For further information, please contact [email protected].