EBF advisor: Alexandra Maniati
Publication date: 6 December 2017
The EBF appreciates the initiatives of the European Commission (EC) incorporated in the EU cybersecurity package issued on the 13th of September 2017, and especially the Proposal for a Regulation on European Union Agency for Network and Information Security (ENISA) and on ICT cybersecurity certification (´Cybersecurity Act´).
The set of provisions introduced in the Cybersecurity Act for the new role of ENISA and the establishment of a voluntary cybersecurity certification framework are seen as steps in the right direction. The financial sector being a critical sector in the cybersecurity ecosystem, would like to kindly invite the EU institutions to take into account in the process of adoption of this proposal, the following issues:
- ENISA’s cooperation with the private sector
- Formalise industry participation in the creation of the cybersecurity certification schemes
- Maintain the voluntary nature of the new EU cybersecurity certification framework
- Create cost-effective and time-effective certification schemes and processes