A new European cybersecurity policy, aka the Network Information Security(NIS) directive, will become law in August 2016 and sets new security standards as “state of the art” for organisations within its remit, suggesting “security should match risk”.
Organisations have 21 months to comply or potentially, in the event of a breach, face fines up to €10m or 2% of global turnover.
There is also new General Data Protection Regulation (GDPR), with potentially larger fines of €20m or 4% of global turnover.
Both pieces of legislation include mandatory breach notification, meaning organisations need to be able to detect, scope, and report a breach to the competent authority within a short period of time.
Research by the ICTTF shows organisations are not fully prepared for the implementation of this legislation, not to mention the impact of a European cyber regulation landscape now hampered by confusion as to the involvement and interaction a post Brexit UK.
A briefing for business leaders that are members of Ireland’s Cyber Task Force, and other interested corporates and organisations, will be given in Dublin by Paul C Dwyer, President of the ICTTF, covering key areas including:
– Legislation Explained (NIS and GDPR) and the time frames
– Practical advice on compliance and how to avoid costly penalties
– Post Brexit issues for Irish and global cybersecurity
Prominent Cyber Task Force members here include Ryanair, Vodafone, ESB Networks, Virgin Media, and Dublin Chamber of Commerce.
The briefing is open to members and non-members of the Cyber Task Force, and takes place on Friday, 22 July 2016 from 13:30 to 17:30, at the Radisson Blu Royal Hotel in Golden Lane, Dublin 8.
Registration is via https://eucyber.eventbrite.ie and costs €257.99 for non-members, including a barbecue following the discussion.
For booking enquiries please call 01 640 1890.