This week in New York, our Secretariat members Tod Eberle (Shadowserver) Francesca Bosco (CyberPeace Institute), Phil Reitinger and Kayle Giroud (Global Cyber Alliance), Klée Aiken (FIRST), and Klara Marland and Chris Painter (GFCE), participated in the 10th substantive session of the United Nations Open-ended Working Group (OEWG) on security of and in the use of information and communications technologies (ICTs).
Monday: Strengthening Nonprofits’ Engagement
Tod Eberle and Kayle Giroud joined a panel discussion at the United Nations HQ on Cybersecurity for the Common Good: Strengthening Nonprofits Engagement in a Permanent UN Mechanism on ICT Security, discussing how nonprofits can engage in a future permanent UN mechanism on ICT security.
Over the past year, with support from the UK FCDO and EUISS, Common Good Cyber conducted a comprehensive review of 334 cybersecurity tools, services, and platforms deployed in the public interest. At the event, GCA launched a new dashboard that visualizes this data, highlighting the impact of these solutions and supporting a multistakeholder approach within the OEWG’s future permanent mechanism.
Other speakers were:
- Catalina Vera Toro (Chile)
- Christina Rupp (Interface)
- Fee-Marie von der Brelie (EUISS – European Union Institute for Security Studies)
Tuesday: Supporting a Victim-Centric Response
At the side event on Cyberattacks against NGOs – Are norms supporting a victim-centric response?, hosted by the Permanent Mission of Belgium to the UN, Francesca Bosco and Kayle Giroud spoke alongside Madeline Murphy Hall (Microsoft) and Basiel Bogaerts (Belgium).
The discussion focused on whether existing cyber norms effectively support a victim-centric response to cyberattacks targeting NGOs. The CyberPeace Institute introduced the CyberPeace Tracer, emphasizing that cybersecurity is not just a technical issue—it’s a human issue with profound societal consequences. A victim-centric approach means looking beyond financial losses or system disruptions to understand the real human impact of cyber threats.
Wednesday: Stronger Recognition of Nonprofits
During the multistakeholder segment of the OEWG session, GCA delivered a statement emphasizing a crucial finding: 162 of the 334 identified cybersecurity solutions identified within the Common Good Cyber mapping are maintained by nonprofit organizations, demonstrating their outsized impact in securing global digital infrastructure.
Despite this, nonprofits often face barriers to meaningful participation in multilateral policy forums like the OEWG. Representing CREST International, Write Pilot, as well as itself, GCA voiced support for the Canada-Chile paper’s proposals to enhance stakeholder engagement and diversity—particularly through dedicated thematic working groups within the OEWG’s permanent mechanism. These working groups will be vital in ensuring practical, action-oriented collaboration between governments, civil society, and the private sector.
Looking Ahead
As the OEWG moves toward implementing a permanent mechanism, Common Good Cyber and the wider nonprofit community remain committed to ensuring cybersecurity efforts serve the common good. We look forward to continued engagement in shaping a more inclusive, resilient, and secure digita
