SEA: Practical Application of Science (Dec 2021)

WHAT'S NEW IN THE NIS 2 DIRECTIVE PROPOSAL COMPARED TO THE OLD NIS DIRECTIVE

  • Adrian-Viorel DRAGOMIR

Journal volume & issue
Vol. IX, no. 27 (3/2021)
pp. 155 – 162

Abstract

Read online

One of the most sensitive activities in the online environment is to ensure the security of information managed by entities, persons, or public institutions that are stored and traded through IT&C systems in the new technological context. New innovative technologies, in addition to their value, can also have negative sides with security in the digital world, and this is an increasingly common topic in the discussions in this area. Not all security incidents can be prevented, but proactive measures to mitigate their impact must be taken in any context. Information, like any critical resource of any organization, is one of the most important components for businesses operating in the European Union and therefore its protection requires particular attention. Sensitive information has become the target of increasingly numerous and diverse threats and attacks in both the public and private sectors. Cyber security measures can protect organizations from multiple threats to business continuity, data veracity, and increase resilience to cyber-attack and minimize the risk of information theft. In order to try to mitigate as many of the issues described above as possible, the European Commission has initiated the process of revising Directive (EU) 2016/1148 on the security of network and information systems (NIS Directive) since June 2020. On 16 December 2020, the Commission launched the proposal for a NIS 2.0 Directive which will be submitted for debate and approval in the European Parliament. One of the major changes brought about by the new Directive is that the Public Administration becomes a sector covered by the new Directive. Under the new regulations in the proposed NIS 2.0 Directive, the scope of activities covered by the national competent authority in the field of cyber security (CERT-RO cf. Law 362/2018) extends to this new sector, which will explicitly include ministries and agencies of the state, the territorial extensions of the central administration, as well as the structures of the local public administration.

Keywords