Tag Archives: DBIS

The latest round up of legal and regulatory developments and other news on cybersecurity from the Datonomy blogging team at Olswang LLP. EU policy and regulatory developments
  • Network Information Security Directive (NISD): The indications are that further trilogue negotiations to agree the Directive are due to take place, today 29 June. “Rapid” adoption of the NISD, and adoption of the GDPR by the end of the year, were among the conclusions adopted by Member States at the EU Council meeting on 25 and 26 June. A debrief from the trilogue is on the agenda for a meeting of the Council’s permanent representatives in Brussels tomorrow. The Council’s telecoms working party is due to meet on 2 July and according to this agenda there will be a debrief on the latest trilogue negotiations. Over the past week, further preparatory documents related to the trilogue - dated 23 and 26 June … Continue Reading ››
The latest round up of legal and regulatory developments and other news on cybersecurity from the Datonomy blogging team at Olswang LLP. UK policy and regulatory developments
  • On 11 June the much-anticipated Report of the Investigatory Powers Review (or Anderson Report) was published, making recommendations for overhaul of the UK’s regimes for communications data retention and communications interception. It will inform the government’s promised Investigatory Powers Bill which is due to be published in the autumn for pre-legislative scrutiny. The news has been widely covered by the BBC, the Guardian and there is tech industry reaction on the website of Tech UK.
EU policy and regulatory developments
  • Network Information Security Directive (NISD): Inter-insitutional agreement on the draft Directive before the end of June – when the rotating Council Presidency will change hands from Latvia to Luxembourg – is looking less likely. The Telecoms Council met on 12 June to discuss … Continue Reading ››
The latest round up of legal and regulatory developments and other news on cybersecurity from the Datonomy blogging team at Olswang LLP. UK policy and regulatory developments
  • PwC has released its 2015 Information security breaches survey, conducted on behalf of the Department for Business, Innovation and Skills.  Some of the key findings from the report include:
    • There has been an increase in the number of large and small organisations suffering security breaches (90% of large organisations reported that they suffered a security breach – up from 81% in 2014);
    • For large organisations, the median number of security breaches for a year was 14;
    • The average cost of the worst single breach suffered by large organisations has more than doubled (from £600k to £1.46m);
    • Despite this increased severity, employee vigilance appears not to be improving as the 50% of the worst breaches suffered were attributed to inadvertent human error (up from 31% in 2014).
  • On the back … Continue Reading ››
Datonomy will be taking a short break over the upcoming UK bank holiday, so here is this week's round up of legal and regulatory developments and other news on cybersecurity from the Datonomy blogging team at Olswang LLP, a little sooner than usual. UK policy and regulatory developments
  • CERT-UK has published its first annual report detailing the major pieces of malware that have operated in the UK over the last year (spread by criminal groups and nation states), a sector breakdown, a review of the Cyber Europe 2014 programme and the Cyber Security Information Sharing Partnership (CiSP), in addition to six predictions for 2015/2016, that include:
    • The supply chain will be hit hard (following supply chain weaknesses exploited in the attacks on US companies JP Morgan, Target and Home Depot, the threat is expected to cross the Atlantic this year) ;
    • Mobile devices will be a single point of failure for business and … Continue Reading ››
The latest round up of legal and regulatory developments and other news on cybersecurity from the Datonomy blogging team at Olswang LLP. UK policy and regulatory developments
  • The Department for Business, Innovation and Skills has announced the addition of two more participating companies to the cybersecurity supplier to government scheme.  The NCC Group and Perspective Risk Ltd can now advertise themselves as companies supplying a cybersecurity product to the UK government and use the government’s logo in marketing materials in order to increase the UK’s cybersecurity exports.
EU policy and regulatory developments
  • Network and Information Security Directive (NISD): There is a frustrating dearth of information in the public domain about the latest progress on the NISD. The EU Council’s Consilium website page on the Directive has been updated with the following report: A third trilogue meeting took place on 30 April 2015. Although progress was made during the trilogue, important differences remain between the … Continue Reading ››
The latest round up of legal and regulatory developments and other news on cybersecurity from the Datonomy blogging team at Olswang LLP. UK policy and regulatory developments
  • Election special: It will be interesting to see what the new Conservative Government means for cybersecurity. The Conservative manifesto pledged to continue investment in cyber defence capabilities and improve response to cyber crime with reforms to police training (including the use of volunteer  “Cyber Specials”).  Datonomy will be looking out for new policy announcements - the state opening of Parliament and the Queen’s Speech will be on 27 May.  In terms of ministerial appointments which may have a bearing on cyber policy, these include: Matt Hancock, who has replaced Francis Maude as Minister for the Cabinet Office, Oliver Letwin who is in overall charge of the Cabinet Office and Sajid Javid, the new  Secretary of State for Business, Innovation and Skills.
  • On 7 May the … Continue Reading ››