|
It is so obvious that the range of obligations and measures is really high and we will gradually discuss it in the next parts of our series.Duties are divided into organizational and technical. Each of the categories then includes a number of measures that each obliged person must implement. It is interesting to compare the range of security measures mentioned in NIS2 as a necessary have to incorporate into their legislation with the form of measures in the draft cyber law. [size=14.6667px]
[size=14.6667px]The European legislator defined the following ten areas:risk analysis and information Indonesia WhatsApp Number Data systems security policysecurity incident managementcontinuity of operations including backup management and disaster recovery and crisis managementsupply chain securitysecuring the acquisition development and maintenance of networks and information systems including the disclosure of vulnerabilities and their solutionspolicies and procedures for evaluating the effectiveness of security measures i.e. [size=14.6667px]
[size=14.6667px]auditingbasic computer hygiene practices and cyber security educationpolicies and procedures regarding the use of cryptography including encryption where appropriatesecurity of human resources access and asset management andthe use of multi-factor authentication secure communication tools and emergency communication tools.In addition for the supply chain NIS2 explicitly requires Member States to consider the vulnerabilities specific to each direct supplier and service provider and the overall quality of their suppliers and service providers cybersecurity products and practices including their secure development process. [size=14.6667px]
| 
發表於 2024-3-11 14:19:48
收藏
分享