The vital role of digital services in today’s economy results in a strong supervision by public authorities, as per the NIS Directive. Marc Wouters of the FPS Economy’s Digital Trust Cell clarified the approach taken for its supervision strategy.

With the context of the NIS directive as a starting point, Marc Wouters pointed out the diction between two groups of digital service providers: those involved in the critical infrastructure environment (with ‘ex ante’ supervision because of specific expectations) and those providing services to the economy in general (with a lighter touch ‘ex post’ supervision). In the latter class are included online search engines, digital market places and cloud computing services (‘in general including SAAS providers’). The supervision must result in solid trustworthy services for customers, as well as a balanced playing field for providers.

In practice, the supervision strategy will focus on basic expectations, with resilience and continuity of services as enablers of the digital economy. Providers will take measures, both technical and organizational, to guarantee this, as well as the protection of valuable data. A risk management culture is a must.

To start, supervision will be reactive, followed by a phase of network building for the sharing of best practices. In a couple of years, more results regarding certification could be expected. There will also be focus groups for providers in the critical/essential services business and for DSP’s catering for federal public authorities. Efforts will be made for unified platforms for notification.

And one solid piece of advice: do not wait for the authorities to contact you to start! Do peruse this presentation as an excellent primer.



Other blog posts

NIS-2: Where are you?

In December 2020 the European Commission published a proposal to repeal the current NIS Directive (European Directive on Network and Information Systems) and to replace it with a new Directive: the so-called NIS-2 Directive. This post will give an update on the status of negotiations of NIS-2, and will outline the aspects we already know and don’t know about the upcoming Directive’s final form.  

SANS Experience Sharing Event

The Cyber Security Coalition and top cybersecurity trainer SANS Institute joined forces to provide specially needed insights and recommendations on successful cloud security, as well as how to handle cyber security in these times of war.

Privacy Focus Group – Practical AI Use Cases

It is easy to drown in the sea of dire warnings about the danger of AI, in particular to our privacy. The main point is that AI in good trust is possible, but requires solid, long term and well-structured approaches. This session of the Privacy focus group offers some crucial insights and welcome examples.

30 November: Computer Security Day: Ada Lovelace

On computer security day we pay tribute to Ada Lovelace, the forgotten mother of the computer. Often described as the first computer programmer — before computers were even invented — Ada was a real visionary. Imagine what she might have achieved had Babbage actually built his “computer” and she hadn’t died at the age of 36.


Share this useful content with friends: