Thursday, 2 February 2012
Mandatory notification of breaches of EC agenda for cyber security
The European Commission gave details this week of how it wants to see public and private organisations across Europe step up their efforts to improve cyber security and fight cyber crime.
Neelie Kroes, Vice President of the European Commission
Neelie Kroes, Vice President of the European Commission and responsible for the digital agenda, revealed the key aims of the EC’s European Strategy for Internet Security, due later this year, at the Security and Defence Agenda dinner in Brussels on Monday night.
Ms Kroes said that she wants to see the strategy based on three key pillars.
First, she said that she wants public and private stakeholders to exchange and act on information about cyber incidents and attacks in what could lead to an obligatory system of cyber breach notification.
Please sign up here to our full-time mailing list to ensure that you receive our weekly newsletter.
“That might require obliging private companies to notify cyber security breaches, incidents or attacks to the authorities—so that we can react quickly to support the company, and minimise the collateral damage,” said Ms Kroes.
Second, the EC Vice President said she also wants to stimulate private sector efforts to improve security. This would be done by the provision of the ‘right’ incentives and by raising awareness among users, she said.
And, third, on the supply side, Ms Kroes said she wants to invest in innovation for security technologies.
“Using the funding tools we have at EU level, like the Competitiveness and Innovation programme and the Horizon 2020 programme for R&D,” explained Ms Kroes.
“We will give the industry the opportunity to test out security solutions, in a real life scenario with shared financial risk. Where gaps are identified in security technology, we can develop ways to fill them. So we can provide security tools that are effective, trustworthy and easy to use,” she said.
“That will itself stimulate a new—and increasingly important—industry. We can create a new business opportunity: to supply private and public sectors alike with the tools they need to tackle online threats. I want Europe to hold its own in that globally competitive market,” continued Ms Kroes.
The Vice President concluded by stressing the importance of cooperation. “The internet does not belong to any one group, but attacks on it affect every group. So let's work together, all sectors, all levels, public and private, national, international and European. So that we can safeguard the security of the systems that increasingly underpin our lives, today and in the future,” she said.
Please sign up here to our full-time mailing list to ensure that you receive our weekly newsletter.
Innovation debate hots up as JLT launches intangible package
New Risk Framework proves every cloud has a risky lining
Corporate round-up
Sustainable policies boost risk management at financial firms says think tank
IOR elects new council members and include first international representative
Time to ‘end the deadlock’ on CBI says DVS commitee
German risk managers unhappy with cyber products on offer
Is Nero at it again?-comment
Supply chain–out of control?–comment
Let the people speak!
A fine balancing act–Portugal
Risk professionals must adapt out of date approaches to maintain progress
Risk managers may become obsolete as risk culture spreads say IRM experts
Strategic thinking and challenging top management key to bright future—IRM
Australasian risk management standards rise, but room for improvement
EU to create risk committee to encourage risk-based regulation
Risk managers at financial institutions make board level breakthrough
Global supply chains still at risk with lessons not learnt, warns Marsh
Beware ninja trends and infobesity warns trendspotting futurist
Lords risk select committee needed to drive agenda says academic
AIR develops new CBI modelling tool for risk managers
