This Thursday continued the particular discussion of the draft Framework Law on Cybersecurity and Critical Information Infrastructure in the Public Security Commission of the Chamber of Deputies.
In the session of this Wednesday, September 6, in the Public Security Commission of the Chamber of Deputies, and with the presence of the Undersecretary of the Interior, Manuel Monsalve, several articles that were of general consensus of the draft Framework Law on Cybersecurity were unanimously approved.
Specifically, Articles 14 to 20 were approved – with the exception of letter B of the latter – and Articles 25 and 26, some of them relating to the operation of the national CSIRT and the CSIRT of national defence.
In the case of articles 14 to 20 that were approved, these addressed issues such as the composition of the staff of the cybersecurity agency, the prohibitions and disqualifications of the agency’s personnel, the composition, operation and cessation of the position of the multisectoral cybersecurity council, the creation and scope of the secure connectivity network of the State, and on the National Computer Security Incident Response Team (CSIRT).
In the case of Article 20(B), this refers to a function of the CSIRT with regard to the coordination of the sectoral CSIRTs and the CSIRT of National Defence when cyber-attacks or significant incidents occur, as well as the supervision of measures taken by them.
Meanwhile, the other two articles approved (25 and 26) with the definition of the CSIRT of National Defense and its functions.
To speed up the legislative process in this instance, some members of the committee decided to withdraw some indications.
In parallel, the teams of government advisors and the commission continue to discuss other articles to find consensus regarding the legal body, specifically those ranging from 21 to 24 and letter B of article 20.
These articles relate to sectoral CSIRTs, the powers of sectoral authorities, the definition of significant incidents, and the recognition of accredited certification centres for compliance with standards.