implementation in belgium of the nis directive eu 2016
play

Implementation in Belgium of the NIS Directive (EU 2016/1148) of 6 - PowerPoint PPT Presentation

Nov 13, 2023 •282 likes •1.13k views

. 06/2019 Implementation in Belgium of the NIS Directive (EU 2016/1148) of 6 July 2016 concerning measures for a high common level of security of network and information systems across the Union The Centre for Cyber security Belgium Law

  1. . 06/2019 Implementation in Belgium of the “NIS” Directive (EU 2016/1148) of 6 July 2016 concerning measures for a high common level of security of network and information systems across the Union

  2. The Centre for Cyber security Belgium Law of April 7th 2019 establishing a framework for the security of networks and information systems of general interest for public security ( Official publication, M.B./B.S., May 3 rd 2019) Loi du 7 avril 2019 établissant un cadre pour la sécurité des réseaux et des systèmes d’information d’intérêt général pour la sécurité publique (en abrégé « loi NIS ») : www.ejustice.just.fgov.be/cgi/article.pl?numac=2019011507&caller=list&article_lang=F&pub_date=2019-05- 03&language=fr Wet van 7 april 2019 tot vaststelling van een kader voor de beveiliging van netwerk- en informatiesystemen van algemeen belang voor de openbare veiligheid (in afkorting “NIS wet”) : www.ejustice.just.fgov.be/cgi/article.pl?numac=2019011507&caller=list&article_lang=N&row_id=1&pub_date=2019- 05-03&language=nl Page 2

  3. Roles of the national authority (CCB), the DGCC and the sectoral authorities Page 3

  4. Page 4

  5. The Centre for Cyber security Belgium 1. Centre for Cybersecurity Belgium (CCB): national coordination authority, EU SPOC (EU NIS Cooperation Group), national CSIRT (EU NIS CSIRT network), NIS national strategy coordinator 2. Direction General Crisis Centre (DGCC) of the FPS Interior: support for the identification of OES and the incident notification (crisis management) 3. Sectoral authorities: BNB, FSMA, BIPT (Digital infrastructures), FPS Mobility, FPS Economy (DG Energy & DSP), FPS Public health (Healthcare), National Security authority for supply and distribution of drinking water (to be created) Sectoral authority Sectoral authorities Identification OES, Control/sanctions OES Page 5

  6. The Centre for Cyber security Belgium Designation of sectoral authorities (law of 7.04.2019 or Royal decree xx.07.2019) 1. Energy (Electricity, Gas, Oil): federal Energy Minister (Federal Public Service – FPS Economy DG Energy); 2. Transport (Air transport, Rail transport, Water transport, Road transport): federal Mobility Minister (Federal Public Service - FPS Mobility and Transport); Except transport by water transport accessible to sea vessels: the Federal Maritime Mobility Minister 4. Health sector: federal Health Minister (Federal Public Service - FPS Public Health); 5. Digital Infrastructure: Belgian Institute for Postal services and Telecommunications (BIPT) 6. Drinking water supply and distribution: National authority for the security of drinking water supply and distribution (to be created with representatives of the Regions) Page 6

  7. The Centre for Cyber security Belgium Financial sector ( Lex specialis – applying EU specific regulations ) National Bank of Belgium (BNB/NBB) – Credit institutions – Central counterparties – Financial institutions (other than credit institutions and central counterparties) subject to the supervision of the National Bank of Belgium pursuant to Articles 8 and 12a of the Law of 22 February 1998 on the organic status of the National Bank of Belgium FSMA (Financial Services and Markets Authority) – Operators of trading venues ; Page 7

  8. The Centre for Cyber security Belgium National CSIRT: CCB (coordination for all sectoral) – service CERT.be + possible sectoral CSIRTs (to support the national CSIRT) National CSIRT CERT.be is part of the CCB. Sectoral Sectoral CSIRT CSIRT Sectoral CSIRT Page 8

  9. The Centre for Cyber security Belgium Tasks of the national CSIRT (CCB) Tasks of the national CSIRT shall include at least the following: (a) monitoring incidents at national and international level , including the processing of personal data relating to the monitoring of these incidents; (b) provide early warnings, alerts, announcements and dissemination of information on risks and incidents to relevant stakeholders; (c) respond to incidents ; (d) provide a dynamic risk and incident analysis and situation knowledge; (e) detect, observe and analyse computer security problems ; (f) to encourage the identification and use of common or standardized practices in the field of procedures for the treatment of incidents and risks, and systems for the classification of incidents, risks and information; (g) ensure cooperation-oriented contacts with the private sector and with other administrative services or public authorities; (h) participate in the EU CSIRT network referred to in Article 12 of the NIS Directive; Page 9

  10. The Centre for Cyber security Belgium Tasks of the national CSIRT (CCB) In the exercise of its powers, the national CSIRT shall take all appropriate measures to achieve its missions . These measures must be proportionate to those objectives and in accordance with the principles of objectivity, transparency and non-discrimination . In achieving those objectives, the national CSIRT may retain all available data, disclose it to another person or distribute it, or make use of it, even that data resulting from unauthorized access to a computer system by a third party . The national CSIRT fulfills its tasks with the necessary caution that may be expected from a government. Priority must always be given to ensuring that the operation of the computer system is not disrupted and that all reasonable precautions must be taken to prevent material damage to the IT system. Page 10

  11. The Centre for Cyber security Belgium Tasks of the sectoral CSIRT Tasks of a sectoral CSIRT shall, in cooperation with the national CSIRT, include at least the following: (a) monitoring sectoral incidents; (b) provide early warnings, alerts, announcements and dissemination of information on risks and incidents to relevant stakeholders in the sector; (c) respond to sectoral incidents; (d) ensure dynamic analysis of risks of sectoral incidents and situational knowledge; (e) ensure cooperation-oriented contacts with the suppliers of its sector; (f) be able to participate in meetings of the CSIRT network referred to in Article 12 of the NIS Directive, which are dedicated to its sector. Page 11

  12. O perators of essential services (“OES”) in Belgium operator having at least one establishment on the Belgian territory and actually carrying out an activity related to the provision of at least one essential service in the Belgium. Page 12

  13. The Centre for Cyber security Belgium Identification of operators of essential services by the sectoral authority for each sector The general criteria for the identification of the operators of essential services : (a) an entity provides a service which is essential for the maintenance of critical societal and/or economic activities ; (b) the provision of that service depends on network and information systems ; and (c) an incident would have significant disruptive effects on the provision of that service . Specific criteria/thresholds to be defined by sectoral authorities (in coordination with CCB and DGCC) Page 13

  14. The Centre for Cyber security Belgium Annex II of the NIS directive (EU 2016/1148 July 6th 2016) Energy Electricity Electricity undertakings Distribution system operators Transmission system operators Oil Operators of oil transmission pipelines Operators of oil production, refining and treatment facilities, storage and transmission Gas Supply undertakings Distribution system operators Transmission system operators Storage system operators LNG system operators Natural gas undertakings Operators of natural gas refining and treatment facilities Page 14

  15. The Centre for Cyber security Belgium Annex I of the law of April 7th 2019 Types of operators of essential services referred to in Article 11(1) of the law 1. Energy a) Electricity Electricity companies within the meaning of Article 2, 15 ° ter of the Act of 29 April 1999 on the organization of the electricity market. Distribution system operators within the meaning of Article 2, 11 ° of the Act of 29 April 1999 on the organization of the electricity market. Grid operators within the meaning of Article 2, 8 ° of the Act of 29 April 1999 on the organization of the electricity market. Page 15

  16. The Centre for Cyber security Belgium Annex I of the law of 7.04.2019 Types of operators of essential services referred to in Article 11(1) b) Petroleum Oil pipeline operators. Operators of installations for the production, refining, processing, storage and transport of petroleum. Page 16

  17. The Centre for Cyber security Belgium Annex I of the law of 7.04.2019 Types of operators of essential services referred to in Article 11(1) c) Gas Natural gas undertakings within the meaning of Article 1, 5 ° bis of the Law of 12 April 1965 on the transport of gaseous products and others by piping. Distribution system operators within the meaning of Article 1, 13 ° of the Law of 12 April 1965 on the transport of gaseous products and others by means of pipelines. Managers of the natural gas transmission network within the meaning of Article 1, 31 ° of the Law of 12 April 1965 on the transport of gaseous products and others by means of pipes. Storage managers in the sense of article 1, 33 °, of the law of 12 April 1965 concerning the transport of gaseous products and others by means of pipes. Managers of the LNG installation within the meaning of article 1, 35 °, of the law of 12 April 1965 concerning the transport of gaseous products and others by means of pipes. Operators of natural gas refining and processing plants . Page 17

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

The implementation of The implementation of Water Framework Directive Water Framework Directive

The implementation of The implementation of Water Framework Directive Water Framework Directive

9/1/2008 The implementation of The implementation of Water Framework Directive Water Framework Directive the WFD the WFD The WFD aims to; Prevent deterioration, enhance the status of aquatic ecosystems & associated wetlands

273 views • 3 slides
Implementation of the Takeover Directive in Greece Dr. Thomas Papadopoulos, DPhil(Oxford)

Implementation of the Takeover Directive in Greece Dr. Thomas Papadopoulos, DPhil(Oxford)

TAIEX, DG Enlargement, European Commission (INT MARKT 34617) Workshop on implementation of takeover bids directive Tirana, 29 March 2010 Implementation of the Takeover Directive in Greece Dr. Thomas Papadopoulos, DPhil(Oxford) Attorney at

632 views • 50 slides
THE IMPLEMENTATION OF THE CONSUMER RIGHTS DIRECTIVE: KEY ISSUES 1 The stages of the

THE IMPLEMENTATION OF THE CONSUMER RIGHTS DIRECTIVE: KEY ISSUES 1 The stages of the

Dr. Danguol Bublien THE IMPLEMENTATION OF THE CONSUMER RIGHTS DIRECTIVE: KEY ISSUES 1 The stages of the implementation of the directives into the national law CRD Application Transposition Enforcement Implementation 2 Content

505 views • 36 slides
Implementation of the Victims Rights Directive our Summer Course on EU Criminal Justice -

Implementation of the Victims Rights Directive our Summer Course on EU Criminal Justice -

Seminar on Implementation of the Victims Rights Directive our Summer Course on EU Criminal Justice - Victims' Rights Directive- - transposition, challenges and expectations European Institute for Gender Equality - 26 November 2015, Vilnius

294 views • 12 slides
UK Implementation of Directive 2011/24/EU on patients rights in cross-border healthcare

UK Implementation of Directive 2011/24/EU on patients rights in cross-border healthcare

UK Implementation of Directive 2011/24/EU on patients rights in cross-border healthcare Rob Dickman International Division Malta Health Network 24 June 2013 Directive 2011/24/EU the most significant and wide- ranging

276 views • 24 slides
The implementation of the Council Directive 86/653/EEC on the coordination of the laws of the

The implementation of the Council Directive 86/653/EEC on the coordination of the laws of the

The implementation of the Council Directive 86/653/EEC on the coordination of the laws of the Member States relating to self-employed commercial agents sphere of application in Denmark, Norway, Sweden and Germany, and other specific

620 views • 42 slides
The Implementation of the European Energy Efficiency Directive: Will Austria achieve its

The Implementation of the European Energy Efficiency Directive: Will Austria achieve its

The Implementation of the European Energy Efficiency Directive: Will Austria achieve its Efficiency Targets in 2020? Austrian Energy Agency (AEA) Gnter Simader | September 4th, 2017 Energy Efficiency Directive (EED 2012/27/EU) 20 - 20 -

555 views • 16 slides
Framework Directive David Cox, Belgium Joint funding for the scientific intercalibration exercise

Framework Directive David Cox, Belgium Joint funding for the scientific intercalibration exercise

Intercalibration for the EU Water Framework Directive David Cox, Belgium Joint funding for the scientific intercalibration exercise of the WFD coastal and transitional waters in the North-East Atlantic Background AIM OF INTERCALIBRATION

285 views • 6 slides
REFLECTIONS AND EXPERIENCES OF HEALTHCARE PROFESSIONALS ON THE IMPLEMENTATION OF THE DIRECTIVE SO

REFLECTIONS AND EXPERIENCES OF HEALTHCARE PROFESSIONALS ON THE IMPLEMENTATION OF THE DIRECTIVE SO

REFLECTIONS AND EXPERIENCES OF HEALTHCARE PROFESSIONALS ON THE IMPLEMENTATION OF THE DIRECTIVE SO FAR... Jurate Svarcaite, PGEU Pharmaceutical Group of European Union Members: Professional Bodies & Pharmacists Associations Netherlands

592 views • 17 slides
Implementation of the Traffic Light Model strategy in Wallonia legislation (Belgium) for the

Implementation of the Traffic Light Model strategy in Wallonia legislation (Belgium) for the

SustRem April 26-28, 2016-Montral Component 1B: International Regulatory Frameworks Implementation of the Traffic Light Model strategy in Wallonia legislation (Belgium) for the appropriate management of potentially polluted sites.

1.09k views • 39 slides
THE EU NIS DIRECTIVE Jim Reid, RTFM llp jim@rfc1035.com OH DEAR - ANOTHER ONE! What is NIS?

THE EU NIS DIRECTIVE Jim Reid, RTFM llp jim@rfc1035.com OH DEAR - ANOTHER ONE! What is NIS?

THE EU NIS DIRECTIVE Jim Reid, RTFM llp jim@rfc1035.com OH DEAR - ANOTHER ONE! What is NIS? Why? What does NIS mean? Whos affected and how? DIRECTIVE ON SECURITY OF NETWORK AND INFORMATION SYSTEMS EU Directive 2016/1148

457 views • 14 slides
A reductionist implementation of a systems directive N. Voulvoulis, K. Arpon, and T. Giakoumis

A reductionist implementation of a systems directive N. Voulvoulis, K. Arpon, and T. Giakoumis

WATER FRAMEWORK DIRECTIVE: A reductionist implementation of a systems directive N. Voulvoulis, K. Arpon, and T. Giakoumis Centre for Environmental Policy Evolution of water policy (1) In the 70s the adoption of the First Environmental Action

351 views • 16 slides
Rebooting the Mediation Directive: Assessing the Limited Impact of its Implementation and

Rebooting the Mediation Directive: Assessing the Limited Impact of its Implementation and

DIRECTORATE GENERAL FOR INTERNAL POLICIES LEGAL AFFAIRS Rebooting the Mediation Directive: Assessing the Limited Impact of its Implementation and Proposing Measures to Increase the Number of Mediations in the EU The EU Parliaments

434 views • 25 slides
CONTRIBUTION OF MARSPLAN-BS PROJECT TO THE IMPLEMENTATION OF THE DIRECTIVE 2014/89/UE

CONTRIBUTION OF MARSPLAN-BS PROJECT TO THE IMPLEMENTATION OF THE DIRECTIVE 2014/89/UE

Challenges and opportunities for maritime spatial planning of the Black Sea in Romania and Bulgaria Final Conference of the MARSPLAN-BS project CONTRIBUTION OF MARSPLAN-BS PROJECT TO THE IMPLEMENTATION OF THE DIRECTIVE 2014/89/UE ESTABLISHING

371 views • 19 slides
Proposal for a Council Directive amending Directive (EU)2011/16 as regards access to AML

Proposal for a Council Directive amending Directive (EU)2011/16 as regards access to AML

Proposal for a Council Directive amending Directive (EU)2011/16 as regards access to AML information by tax authorities - "DAC5" EESC Brussels, 14.09.2016 European Commission DG Taxation and Customs Union EU framework EU

98 views • 7 slides
Implementation of Falsified Medicines Directive Meeting with Patients and Consumers Organisations

Implementation of Falsified Medicines Directive Meeting with Patients and Consumers Organisations

Implementation of Falsified Medicines Directive Meeting with Patients and Consumers Organisations 30 November 2011 Presented by: David Cockburn Head of Manufacturing and Quality Compliance An agency of the European Union Agenda Background

249 views • 21 slides
French view on the NIS Diretcive transposition Cybersecurity Framework in France - ANSSI >

French view on the NIS Diretcive transposition Cybersecurity Framework in France - ANSSI >

French view on the NIS Diretcive transposition Cybersecurity Framework in France - ANSSI > The Agence Nationale de la Scurit des Systmes dInformation (ANSSI) was created on July 7 th 2009 by a decree (2009-834) of the Prime Minister,

341 views • 17 slides
Operational Security in EGEE Romain Wartel, CERN IT EGEE Operational Security Coordination Team

Operational Security in EGEE Romain Wartel, CERN IT EGEE Operational Security Coordination Team

Enabling Grids for E-sciencE Operational Security in EGEE Romain Wartel, CERN IT EGEE Operational Security Coordination Team http://www.eu-egee.org/security/ International Symposium on Grid Computing (ISGC) 2008 Academia Sinica, Taipei, 7 - 11

362 views • 14 slides
EU - Network and Information Security (NIS) Directive George Michaelides Commissioner of

EU - Network and Information Security (NIS) Directive George Michaelides Commissioner of

EU - Network and Information Security (NIS) Directive George Michaelides Commissioner of Electronic Communications and Postal Regulation http://www.ocecpr.org.cy 22 nd November 2016 1 Overview Cybersecurity Facts European Cybersecurity

289 views • 18 slides
Extending the Charter: Addressing Vulnerability and Exploit Information Yurie Yurie I to I to

Extending the Charter: Addressing Vulnerability and Exploit Information Yurie Yurie I to I to

I ETF I NCH W orking Group Meeting 5 th August 2 0 0 4 , San Diego CA US Extending the Charter: Addressing Vulnerability and Exploit Information Yurie Yurie I to I to I an Bryant I an Bryant Liaison Manager Head, Capability Developm ent

389 views • 22 slides
NCSC Research Agenda Jeroen van der Ham & Nicole van Deursen dcypher Symposium, December 2019

NCSC Research Agenda Jeroen van der Ham & Nicole van Deursen dcypher Symposium, December 2019

NCSC Research Agenda Jeroen van der Ham & Nicole van Deursen dcypher Symposium, December 2019 #dSymp dcypher Symposium 2019 | 3 Dec. Media Plaza Utrecht NCSC Research Agenda Jeroen van der Ham & Nicole van Deursen dcypher Symposium,

884 views • 10 slides
LIMITE EN Bulgarian Presidency of the Council of the EU 1 January 30 June 2018 UNITED WE

LIMITE EN Bulgarian Presidency of the Council of the EU 1 January 30 June 2018 UNITED WE

Brussels, 11 January 2018 WK 229/2018 INIT LIMITE TELECOM WORKING PAPER This is a paper intended for a specific community of recipients. Handling and further distribution are under the sole responsibility of community members. CONTRIBUTION

134 views • 9 slides
Prevent Duty Update 9 May 2018 Rohan Slaughter Subject Specialist Who we are? Jisc is the UK

Prevent Duty Update 9 May 2018 Rohan Slaughter Subject Specialist Who we are? Jisc is the UK

Prevent Duty Update 9 May 2018 Rohan Slaughter Subject Specialist Who we are? Jisc is the UK higher , further education and skills sectors not-for-profit organisation for digital services and solutions Provide trusted advice and Operate

753 views • 46 slides
ENISA activities on C3E Cyber Europe 2014 Future activities www.enisa.europa.eu 2 1 20/03/2015

ENISA activities on C3E Cyber Europe 2014 Future activities www.enisa.europa.eu 2 1 20/03/2015

20/03/2015 Razvan GAVRILA, CSA Summit, Slovenia, 2015 www.enisa.europa.eu ENISA activities on C3E Cyber Europe 2014 Future activities www.enisa.europa.eu 2 1 20/03/2015 2009 - Good practice guide on Developing National Cyber Security

423 views • 9 slides

More recommend