Mon, Dec 4, 2023

Media One Stop

Front Line Stories

CyberSecurity, Breaking News, Trending

Particular discussion of cybersecurity bill advances in House committee

SacredHeart

This Thursday continued the particular discussion of the draft Framework Law on Cybersecurity and Critical Information Infrastructure in the Public Security Commission of the Chamber of Deputies.

In the session of this Wednesday, September 6, in the Public Security Commission of the Chamber of Deputies, and with the presence of the Undersecretary of the Interior, Manuel Monsalve, several articles that were of general consensus of the draft Framework Law on Cybersecurity were unanimously approved.

Specifically, Articles 14 to 20 were approved – with the exception of letter B of the latter – and Articles 25 and 26, some of them relating to the operation of the national CSIRT and the CSIRT of national defence.

In the case of articles 14 to 20 that were approved, these addressed issues such as the composition of the staff of the cybersecurity agency, the prohibitions and disqualifications of the agency’s personnel, the composition, operation and cessation of the position of the multisectoral cybersecurity council, the creation and scope of the secure connectivity network of the State, and on the National Computer Security Incident Response Team (CSIRT).

In the case of Article 20(B), this refers to a function of the CSIRT with regard to the coordination of the sectoral CSIRTs and the CSIRT of National Defence when cyber-attacks or significant incidents occur, as well as the supervision of measures taken by them.

Meanwhile, the other two articles approved (25 and 26) with the definition of the CSIRT of National Defense and its functions.

To speed up the legislative process in this instance, some members of the committee decided to withdraw some indications.

In parallel, the teams of government advisors and the commission continue to discuss other articles to find consensus regarding the legal body, specifically those ranging from 21 to 24 and letter B of article 20.

These articles relate to sectoral CSIRTs, the powers of sectoral authorities, the definition of significant incidents, and the recognition of accredited certification centres for compliance with standards.

Comments

Related Posts

Services interrupted by ransomware in Seville City Hall

LockBit is behind the ransomware incident and they claim more than 5 million euros as a ransom. Earlier this week the City Council of Seville, capital of the community of Andalusia, was affected by a cyberattack on its computer systems. The delegate of Finance, Citizen Participation and Digital Transformation, Juan Bueno, was the first authority […]

Microsoft Warns of Unpatched “Zero-Day” Vulnerability Exploitation

In what was deemed an “unusual” move, the company documented a number of zero-day remote code execution vulnerabilities in Office. In its latest Patch Tuesday release, Microsoft shared a total of 132 security updates, including six actively exploited vulnerabilities and 37 remote code execution (RCE) vulnerabilities. Of the 37 corrected RCEs, 9 of them were […]

Hackers are Actively Exploiting Zero-day Flaw in Zimbra Server

Zimbra is a widely used email client used by many organizations worldwide. The Zimbra Collaboration Suite provides a much more comprehensive package of document storage, Editing, instant messaging, mini calendar, and other ease of access administrative controls. Recent reports indicate that Zimbra Collaboration Suite 8.8.15 had a vulnerability that exists in the mom veto file on the web server […]

Leave a Reply

Your email address will not be published. Required fields are marked *

error: Content is protected !!
Enable Notifications OK No thanks