The threat against Danish research is complex, and protecting it is no easy task as this may conflict with the Danish tradition of open research. Each organization is unique and has its own challenges.
PET’s approach is to offer products, guidelines and publications that are to support the security measures through local adjustment and implementation. Thus, the below resources should be considered in relation to your individual organization and your work to prevent espionage.
Knowledge portal for security officers
Here, you will find information which is useful if you are a security officer. Contact PET's Centre for Innovation and Knowledge Security on civ@pet.dk to get a password for the site.Go to the knowledge portal
Good security management
One of the cornerstones of creating a robust security organization is good security management. PET has developed a tool for you to use to ensure good security management at your organization. Among other things, it offers a list of questions you can use when evaluating your work so far and to support your next step.
Materials on security
Publication with advice on espionage prevention to researchers and other staff.
Concerning the espionage threat, exposed research areas, methods used by foreign intelligence services and more.
Is there a need within your organization to better understand the threat from espionage or terrorism and to increase security? Then PET's courses may be relevant to you. PET offers a range of both in-person and online courses.
Read more on the courses hereMany physical security measures will be the responsibility of the institution or company as such. This could be the instalment of surveillance and alarms.
However, there is also a great deal you as an employee can do. For example, carry your ID card in a visible place, comply with your procedures for the safe storage of information and be aware of any physical security breaches.
Approximately once a month, PET publishes new episodes of the podcast “Tjenesten og truslerne” (the Service and the threats). One of the episodes is called ”Er vores forskning i fare?” (Is our research at risk?) You can find it where you usually go to download your podcasts. However, the podcast is in Danish.
PET is on LinkedIn, where we, among other things, keep you up to date on new guidelines.
It is important to focus on security in connection with trips, conferences and stays abroad. You are more at risk when you are in an unfamiliar setting. Prior to your trip you can check whether your organization has a travel policy that may include certain decisions in relation to information security. Only bring the information you need.
During the trip, you must pay attention to the material you are bringing with you and the people you interact with. For example, do they show a particular interest in your research?
When research facilities, educational institutions and coampanies want to safeguard knowledge, their employees are an essential factor.
As an institution, you should also be aware that a foreign colleague may be subject to pressure from the home country's intelligence services.
Certain security-related challenges may arise when receiving visitors from abroad. It is therefore a good idea if you make it clear in advance what information you wish to share with your visitors.
During the visit, you should be aware if any of the delegation members behave in an atypical way. For example, are they taking an unusual number of photos? Do they ask questions that are not related to the purpose of the visit?
Another thing to remember is IT security. For example, it would be advisable to prohibit the use of foreign USB sticks in your computers or the installation of foreign software/hardware.
URIS
URIS is an abbreviation of ”Udvalg om retningslinjer for internationalt forsknings- og innovationssamarbejde” (Committee on guidelines for international research and innovation collaboration”. In May 2022, the committee published a report containing a number of recommendations and guidelines aimed at protecting Danish research against the financial, security-related and ethical risks that are part of research and innovation collaborations.
See the URIS report (pdf)