January 24, 2022

Volume XII, Number 24

Advertisement
Advertisement

January 24, 2022

Subscribe to Latest Legal News and Analysis

January 21, 2022

Subscribe to Latest Legal News and Analysis
Advertisement

UK Government Consults on EU Cybersecurity Plans

As we summarized last fall, the EU Commission published a new Cybersecurity Communication in September that, among other things, sets out proposals for an EU cybersecurity certification framework as part of ‎an EU “Cybersecurity Act” (see our post here and a more detailed summary here).  Just before the holidays, on December 20, 2017, the UK Government published a consultation on these proposals, which the UK Government will use‎ to help develop its position.  Key elements of the proposals that the UK Government is consulting on include:

  • Harmonizing the existing cybersecurity certification landscape to reduce costs and administrative burdens for companies by establishing a common “European Cybersecurity Certification Framework for ICT products and services.”
  • Further specifying and publishing best practices relating to incident reporting and security obligations for some digital service providers under the NIS Directive (see our reports here and ‎here).
  • Changes to the tasks and functions of ENISA, including providing ENISA with a strengthened and permanent mandate.

The UK Government also welcomes views from stakeholders on the impact of the proposals with respect to the UK’s exit from the EU.  The consultation closes on February 13, 2018.  Before then, and by January 20, 2018, the UK Government has been asked by the UK Parliament to clarify issues relating to the proposals, including on issues relating to the “Cybersecurity Act” and cybersecurity certification.

© 2022 Covington & Burling LLPNational Law Review, Volume VIII, Number 8
Advertisement
Advertisement
Advertisement
Advertisement
Advertisement
Advertisement

About this Author

Mark Young, Data privacy and cybersecurity lawyer, Covington
Partner

Mark Young advises clients on data protection, cybersecurity and intellectual property matters. He has particular expertise in regulatory compliance and legislative advocacy, cyber and data security incident preparation and management, and online IP enforcement.

According to the latest edition of Chambers UK (2018), he has "a really sharp analytical mind and good understanding of key regulations." In previous editions, he has been recognized as "a trusted adviser - practical, results-oriented and an expert in the field," and "enjoying a growing reputation...

+442070672101
Joseph Jones, Covington, Copyright and trademark attorney
Associate

Joe Jones is an associate in the technology and media practice group, having joined the firm as a trainee solicitor in 2014.

Mr. Jones advises emerging and leading companies on data protection and intellectual property issues, including cybersecurity, copyright, trademarks, and e-commerce. He has experience advising companies in the technology, pharmaceutical, and media sectors. His practice encompasses regulatory compliance and advisory work. He regularly provides strategic advice to global companies on complying with data protection laws in Europe and the UK....

44 20 7067 2193
Advertisement
Advertisement
Advertisement