On 6 July 2016, the European Parliament adopted the NIS Directive (Network and Information security) proposal, the first European Union legislation concerning cybersecurity, which establishes a set of measures to prevent cybernetic incidents in Europe.
The Directive aims to increase cooperation between Member States in this field and create a culture of security in critical sectors for the economy and society that strongly depend on information and communication technologies. It also determined the creation of a Computer Security Incident Response Team (CSIRT) in each Member State and the designation of one or more competent national authority with powers to implement and enforce the Directive.
The new legislative package, which had been approved by the European Council on 17 May, comes into force in August 2016. Member States have 21 months to transpose the Directive into national law and an additional 6 months to identify the essential service providers.
Further information:
- The Directive on security of network and information systems (NIS Directive) https://ec.europa.eu/digital-single-market/en/network-and-information-security-nis-directive
- Statement by Vice-President Ansip and Commissioner Oettinger welcoming the adoption of the first EU-wide rules on cybersecurity http://europa.eu/rapid/press-release_STATEMENT-16-2424_de.htm
Related information on ANACOM's website:
- European Council adopts Directive to reinforce cybersecurity https://www.anacom.pt/render.jsp?contentId=1386145
- Agreement on Directive to strengthen cybersecurity https://www.anacom.pt/render.jsp?contentId=1374920