Upload File

legislation as a key tool of the national cybersecurity strategy · 2015. 12. 30. · legislation...

  • Home
  • Documents
  • Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the
15
Legislation as a Key Tool of the National Cybersecurity Strategy Legislation to make us stronger, but where is the right balance? Costas Efthymiou Office of the Commissioner of Electronic Communications and Postal Regulation http://www.ocecpr.org.cy 2 November 2015

Upload: others

Post on 18-Sep-2020

4 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the

Legislation as a Key Tool of the

National Cybersecurity Strategy

Legislation to make us stronger,

but where is the right balance?

Costas Efthymiou

Office of the Commissioner of Electronic Communications and Postal Regulation

http://www.ocecpr.org.cy

2 November 2015

http://www.ocecpr.org.cy/
Page 2: Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the

Overview

Legislation as a Key Tool of the National Cybersecurity Strategy 2

National Cybersecurity Strategy (NCS)

Where could legislation be used in a NCS?

Drivers (new and existing)

Example – Electronic Communications

Is legislation the answer to everything?

Page 3: Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the

Information Society – Digital Cyprus

3

Infrastructure and Services Development

Application Development

Access to Content

Network and Information

Security

Citizen Participation

Trust

Legislation as a Key Tool of the National Cybersecurity Strategy

Page 4: Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the

National Cybersecurity Strategy

(NCS)

4

Legal Framework

Technical and administrative measures

Capability Development

Incident Response

Coordination of public stakeholders

Effective public-private collaboration

Legislation as a Key Tool of the National Cybersecurity Strategy

Page 5: Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the

Strategy Targets – everything?

5

Where is the use of legislation appropriate?

Risks to what? Protect what?

Legislation as a Key Tool of the National Cybersecurity Strategy

Page 6: Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the

Cyprus NCS Building Blocks

6

v1! Legislation as a Key Tool of the National Cybersecurity Strategy

Page 7: Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the

Critical Information Infrastructures

7 Legislation as a Key Tool of the National Cybersecurity Strategy

Page 8: Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the

CIIs - Critical in the same way?

8

Telecommunications, Energy, Transport, Food,

Water, Banking & Finance, Government...and

more...

What makes an infrastructure critical?

Do sector specificities actually matter in

terms of a comprehensive approach to security?

Yes, critical sectors can vary wildly in terms of

ICT infrastructure, but so what?

Level of criticality shouldn’t matter

Legislation as a Key Tool of the National Cybersecurity Strategy

Page 9: Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the

Legislation - Current Major Drivers

9

Strategy itself (Action 4 – Legal Framework)

Action 2 – Structures

Action 7 – Identification of CIIs

Risk assessment

Action 9 – National Cybersecurity Framework

Actions 10,11 – CERTs/CSIRTs

Action 16 – National Contingency Plan

Related Activities

Notifications (Security and privacy breaches)

Minimum security measures

Legislation as a Key Tool of the National Cybersecurity Strategy

Page 10: Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the

Legislation – Upcoming Drivers

10

EU NIS Directive (coming soon!)

Key legislative tool of the European Cybersecurity

Strategy

Binds nation states to have a strategy and a national

CERT, with specific content and competencies

Extension of incident notification requirements to

most (if not all) critical information infrastructures

+ minimum security measures?

Closer collaboration with other Member States in

terms of combating large scale cyber threats

Cybercrime, Cyberdefence, External Affairs

Legislation as a Key Tool of the National Cybersecurity Strategy

Page 11: Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the

Example – Supervision of Electronic

Communications Providers

11

Many security measures required...

...but how can the application of these measures be

supervised?

Options*:

Mandating or recommending a security standard

Assessing compliance across the market

Taking a staged approach to supervision

Auditing providers (periodically, at random, and/or

post-incident) * from survey carried out by ENISA, reported in ‘Technical Guideline on Security

Measures’, ENISA, April 2014

Legislation as a Key Tool of the National Cybersecurity Strategy

Page 12: Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the

Example - CIIs

12

As above – many options, associated cost, but

many potential benefits

NIS Directive will increase the obligations

To what extent should we legislate?

Collaboration is the target

Win-win!

Information sharing

TRUST!!!

Legislation as a Key Tool of the National Cybersecurity Strategy

Page 13: Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the

To summarise...

Legislation can be used as a key tool in a

number of application areas within the

National Cybersecurity Strategy

Supervision

Standards

Minimum security measures

Homogeneous approach (government)

Critical Information Infrastructures

Crisis management

13 Legislation as a Key Tool of the National Cybersecurity Strategy

Page 14: Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the

... And Final Message

For cybersecurity, the usefulness of

legislation can only be maximised when it

is used as part of a holistic approach

Legislation

Voluntary Actions

Awareness

Mutual Support

TRUST!

14 Legislation as a Key Tool of the National Cybersecurity Strategy

Page 15: Legislation as a Key Tool of the National Cybersecurity Strategy · 2015. 12. 30. · Legislation – Upcoming Drivers 10 EU NIS Directive (coming soon!) Key legislative tool of the

Thank You!

OCECPR - http://www.ocecpr.org.cy

Costas Efthymiou Tel. +35722693169 [email protected]

15 Legislation as a Key Tool of the National Cybersecurity Strategy

http://www.ocecpr.org.cy/
mailto:[email protected]
mailto:[email protected]

AP US History - Key terms, people, and legislation list

Key Features of Liquor Licensing LegisLation in austraLianceta.flinders.edu.au/files/6913/6425/9347/EN486_2013_Roche.pdf · Liquor licensing legislation in Australia is ... the Liquor

Xhorse vvdi key tool unlock wring diagram

Xhorse VVDI Key Tool User Manual--UOBD2Title Xhorse VVDI Key Tool User Manual--UOBD2 Author UOBD2 Keywords Xhorse VVDI Key Tool User Manual Created Date 7/7/2017 1:40:17 AM

Federal Climate Change Legislation : Key Issues for Commissions

Summary of Key SA HSE Legislation

Registered Apprenticeship A Key Strategic Talent Development Tool

Solomon Islands: Environmental Legislation Review...Solomon Islands: Environmental Legislative Review 5 TABLE OF KEY ENVIRONMENTAL LEGISLATION ENVIRONMENTAL MANAGEMENT Foreign Investment

LEGISLATION AS A CRITICAL TOOL IN ADDRESSING SOCIAL CHANGE · PDF file · 2016-01-19RN OZOEMENA PER / PELJ 2015(18)4 . 970 . LEGISLATION AS A CRITICAL TOOL IN ADDRESSING SOCIAL CHANGE

Legislation Guidelines - The Legislation Design and ... · Legislation is one of the key ways by which governments seek to change behaviour and outcomes for society. Legislation creates

Xhorse vvdi key tool supported vehicle list

Assessment Tool Key Stage 1 (Ver3) - PE Umbrellapeumbrella.com/.../01/Assessment-Tool-Key-Stage-1-Ver3.pdfAssessment Date: Date: The Umbrella Title Microsoft Word - Assessment Tool

HYDROPOWER: A Key Tool for Sustainable Development

Food Handlers Certificate - Module 2 - Legislation...Food Handling CERTIFICATE Overview of key legislation ur an Touch to play audio Key obligations for food businesses Train staff

Changes To Legislation And Key Management Decisions

Xhorse VVDI Key Tool Remote Unlock Wiring Diagram · Title: Xhorse VVDI Key Tool Remote Unlock Wiring Diagram Author: VVDIShop Subject: vvdi key tool Keywords: vvdi key tool; xhorse

The Key Fund Impact Tool

Bellone Signs Key Legislation to Advance Suffolk County’s … · 8/12/2016 Bellone Signs Key Legislation to Advance Suffolk County’s Reclaim Our Water Initiative : Long Island

제1장. Key Analysis Tool - samili.com · 7 제1장. Key Analysis Tool 제1장. Key Analysis Tool 외부환경분석 1. 시장동향조사 1-1. 기술시장동향분석 1-1-1. 상위

EU audit legislation - EY - United · PDF file2 EU audit legislation | Understanding the legislation and how it will affect you Key points • New European Union (EU) audit legislation

VVDI Key Tool User Manual

Introduction to the EU legislation and definitions of key ... Key_concepts/2012... · legislation on equality and definitions of key concepts: Direct discrimination, ... Maria Sirdar

LEGISLATION AS A CRITICAL TOOL IN ADDRESSING SOCIAL CHANGE … · 2016. 2. 29. · RN OZOEMENA PER / PELJ 2015(18)4 . 970 . LEGISLATION AS A CRITICAL TOOL IN ADDRESSING SOCIAL CHANGE

Appendix 1: Key legislation, rules, policies and guidance

Bioenergy: Key tool for Sustainable Society (Korean Experiences)

CANNABIS@WORK: EMPLOYEE ASSISTANCE PROFESSIONALS TOOL … · The Trudeau government is expected to introduce legislation . 3 Employee Assistance Professionals Tool Kit: Cannabis@Work

Key Programming Tool

Key EU legislation, key EU financing, l ocal experience and best world prаctices

Key Account Tool Box

CAPCOA’S Perspective on Recent Key PM Legislation in California

audit of key legislation in ghana information access opportunities

SRK Renew Key Tool - Key Prog Tools

V.O. Key, The Matching Requirement In Federal Grant Legislation

Key Environmental Legislation for Cuba's Transition Period · KEY ENVIRONMENTAL LEGISLATION FOR CUBA'S TRANSITION PERIOD MATIAS F. TRAvlEso-DIAz* 1. INTRODUCTION There is a growing

Country Key Organizations Legislation Regulations Guidelines · Country Key Organizations Legislation Regulations Guidelines