Transatlantic Response on Cyber Resilience
21 February 2018
The European Parliament aims to strengthen its cyber security rules in order to tackle the increasing threat posed by cyber… attacks as well as to take advantage of the opportunities of the new digital age.
Firstly, This reform aims to build on the measures put in place by the cyber security strategy and its main pillar, the directive on security of network and information systems – implementation of the NIS directive, where Member states have until May 2018 to transpose the cyber security strategy into national law and up to December 2018 to identify operators of essential services.
Secondly, Cybersecurity is a global issue and requires international solutions. Our cybersecurity, our cyber resilience is a joint responsibility of public and private sectors on both sides of the Atlantic. Public-private cooperation is needed in order to create the necessary tools. It is crucial, as digital economy is growing fast, the big data sector, Internet of Things, Internet of Everything, and Cloud solutions are developing fast. We need to make sure that all these solutions are protected and secure.
The digital market is developing and growing, giving us new opportunities. There is not only the ICT sector development, we can see now – it is the ICT development in all sectors, all branches of the economy. The doubled added value is coming from growth of the digital factors in the modern world.
Cyber-attacks are more and more frequent and their sophistication and complexity is increasing. This demonstrates that the so-called dark Internet is developing and improving in skills.
That is why – security and resilience must be an important part of the digital economy development. The focus on digital development, where high level of security of services becomes our competitive advantage and ensures the trust of the users.
The European Parliament is working currently on the European Commission’s proposal for the revised mandate and responsibilities of the European Agency for Network and Information Security (ENISA); and a European framework for cybersecurity certification scheme for ICT products and services, which will be overseen by ENISA:
- The aim is to create harmonization on EU level in order to both eliminate barriers – different rules and schemes which vary from member state to member state– as well as increase the security through development of EU-wide standards. It is paramount that the standards developed capitalize on already existing best practices deployed across relevant sectors of the Industry.
- Equally it is crucial to create certifications schemes that will be corresponding to global solutions – in order not to impose unnecessary burdens in the interconnected environment of ICT.
Cybersecurity literacy is increasingly crucial and there is continuous need for:
- understanding the problems related to the cybersecurity
- change the corporate patterns: how to manage the problems of cybersecurity avoiding underestimation of the problem
- be ready for risk analysis, because they are key – and should be different in different areas, in different sectors
- to raise the awareness of the problem – among individuals, also workers, and among both big players and SMEs
- stimulate the cybersecurity industry development in Europe, also by using EU funding, such as the Horizon 2020 programme, for stronger links between industry development and research for innovative solutions.