MAR 17, 2021 | EUROPEAN UNION | EUROPE, MIDDLE EAST AND AFRICA
BSA Welcomes Emphasis on Risk Management, Encourages Consistency and Global Alignment in Proposed Updates to EU Cybersecurity Rules
BRUSSELS – March 17, 2021 – In comments filed today, BSA | The Software Alliance welcomed efforts to strengthen cybersecurity resilience in Europe through proposed updates to the EU Network and Information Security Directive (NIS 2.0), offering the following statement.
“The threat landscape has increased considerably since the adoption of the original NIS Directive in 2016, and its objectives are more relevant than ever. Cyber incidents currently rank among the most significant business risks globally,” said Isabelle Roccia, Senior Manager, Policy – EMEA at BSA. “The horizontal approach to cybersecurity resilience and response proposed in NIS 2.0 is reflective of today’s digitalized economy and society. BSA particularly welcomes the directive’s emphasis on risk management, and we have offered specific recommendations to achieve an appropriate risk-based approach that is both effective and proportionate.”
“Going forward, it will be important that NIS 2.0 maintains clear precedence over sector-specific initiatives to strengthen resilience, such as the DORA proposal for operational resilience of the financial sector, to avoid overlap, address potential inconsistencies, and provide robust cybersecurity rules across Europe’s legislative frameworks,” Roccia added. “The objectives of NIS 2.0 will also be best served by leveraging industry expertise and public-private cooperation – for instance, on information sharing – and by aligning EU rules with international standards across a range of topics such as risk management, incidents reporting, and coordinated vulnerability disclosure.”
Read BSA’s full comments on the proposed NIS 2.0 Directive here.
BSA |“软件联盟”(www.bsa.org) 是全球软件行业的主要倡导者，旨在代表该行业，向政府和国际市场发声。其成员包括全球最具创新力的公司，这些公司制定的软件解决方案，不但能够刺激经济，还能提升现代生活的品质。
BSA 的总部位于华盛顿特区，其营运机构遍布 30 多个国家。BSA 凭借这些机构，率先涉足合规项目，以期促进使用合法软件、倡导制定公共政策，并以此培养技术创新能力，以及推动发展数字经济。