The new cybersecurity rules, whose objective is to strengthen the cybersecurity of the different entities of the European Union, must be adopted by the Member States from Friday.
The Member States of the European Union (EU) must adopt, starting Friday, new community rules on cybersecurity of critical entities and networks within the framework of the revised directive for a common security framework, it was announced this Thursday.
In a statement released this Thursday, the European Commission explains that it “adopted today [quinta-feira] the first implementing rules on the cybersecurity of critical entities and networks under the Directive on measures to ensure a high common level of cybersecurity in the Union.”
This adoption coincides with the deadline for Member States to transpose the directive into their national legislation. and as of Friday, “all Member States must apply the necessary measures to comply with the cybersecurity standards of this directive, including supervision and enforcement measures,” adds the community executive.
The implementing act adopted this Thursday by Brussels specifies cybersecurity risk management measures, as well as the cases in which an incident must be considered significant and companies providing digital infrastructure and services must communicate it to national authorities, with the aim of strengthen EU cybersecurity.
The implementing regulation will be published in the Official Journal of the EU and will enter into force 20 days later.
The first EU cybersecurity law came into force in 2016 and helped create a common level of security for networks and information systems across the EU. It was then revised last year with a transposition period now ending.
Source: Observadora
