Increasing cyber resilience in the private sector: towards smart(er) supervision and enforcement?
Jun 8, 2021 | 11:30 AM - 12:40 PM
Jun 8, 2021 | 11:30 AM - 12:40 PM
Description
Over the last few years, governments have been increasingly intervening to enhance digital security resilience in the private sector. For instance, in the United States, the government has incentivised the adoption of the National Institute of Standards and Technology (NIST) Cyber Security Framework, including through public procurement. In the European Union, the NIS Directive requires operators of critical activities to strengthen digital security risk management. In both cases, it can be challenging for governments to assess and ensure the effective adoption and enforcement of their policies. This session will discuss best practices for governments to improve the policy effectiveness, including nurturing multi-stakeholder communities in specific sectors and developing public-private partnerships.
Possible topics for discussion will include:
• How can governments assess and measure the effectiveness of policies aiming to enhance the digital security resilience of the private sector?
• Which tools can help governments supervise and enforce digital security policies (regulatory and self-regulatory)?
• What can we learn from innovative supervisory experiences in other areas (e.g. telecoms, others)?
• How can governments minimise duplication and ensure consistency of supervision and enforcement across sectors?
