Joonas Heiter, Director General of RIA, emphasised that the digital services of the country must operate under all circumstances, and to guarantee that, cybersecurity must be addressed in day-to-day work as well as in a broader strategic context. ‘Veikko and I share a common understanding of the challenges and solutions related to the continuity of the IT systems of the state. However, it is not sustainable for the head of CERT-EE to be responsible for both the ongoing management and the strategic big picture at the same time. Veikko has invaluable experience in leading CERT-EE, strong contacts both in Estonia and abroad, and the ability to connect technical knowledge with the everyday needs of people. Therefore, we jointly agreed that the best solution is to give Veikko the role of an architect, whose task is to oversee the processes of RIA and the National Cyber Security Centre as a whole, and to look for smarter solutions that ensure service quality and long-term value for users,’ Heiter explained.
Veikko’s move to this new position meant that CERT-EE needed a new leader who combines technical expertise, strategic thinking, and international experience. ‘Taavi Kupper already stood out in a previous RIA recruitment process for his clear leadership style and vision. He is not unfamiliar to us, as Taavi has been a key partner to RIA in cooperation with the Cyber Command, participated in our crisis exercises, and contributed to the joint efforts of ensuring cybersecurity through the cyber reserve. So, when the need arose to find a new head for CERT-EE, it felt like a natural step to turn to Taavi,’ said Heiter.
According to Taavi Kupper, his main goal in the new position is to contribute his knowledge and experience to strengthening the cybersecurity of Estonia. ‘The role of CERT-EE is to serve as a connecting link that brings together different parties and helps to create solutions that keep our society secure. For me, this means open communication about risks, quick and decisive action during incidents, and sharing lessons learned to make the entire system increasingly resilient,’ Kupper said.
Taavi Kupper has a broad background in cyber defence and security in both the public and private sectors. He has previously worked at Nortal, CR14, and in various positions at the Cyber and Information Operations Centre of the Estonian Defence Forces.
CERT is an organisation that deals with cyber incidents under the CERT framework. There are CERT organisations all over the world and the organisations closely collaborate by sharing information about cyber incidents and alerting each other about security threats. CERT-EE detects, monitors, and resolves cyber incidents on Estonian computer networks, reports threats, and organises prevention activities.
