Cyberattacks and significant cyber incidents are being reported on a weekly, if not daily, basis with consequences both in the private as well as in the public sector. In light of the increase of cyber risks, it comes as no surprise that worldwide legislators have taken action. With this regard EU first adopted the NIS Directive in 2013, with the goal to set common legal measures and requirements to boost the overall level of cybersecurity in the EU, ensuring better protection for critical infrastructures and the Cybersecurity Act in 2019, enhancing ENISA's role and powers. Within this framework, entities operating both in public and private sectors are therefore asked to implement adequate plans on cybersecurity, also making sure that internal policies and procedures are appropriate even from a data protection perspective.
Fonte: IPSOA – Informazione quotidiana su fisco, lavoro e pensioni, bilancio, gestione d’impresa e finanziamenti.