Concluding three years of negotiations, the European Network and Information System Security (NIS) Directive – known as the “NIS Directive” – was adopted on 6 July 2016 and published on 19 July on the Official Journal of the European Union (EU).
As the first European legislation dedicated to cybersecurity, the NIS Directive aims at creating a common minimum level of cybersecurity preparedness and response in Europe, thus ensuring the smooth functioning of the EU Digital Single Market.
As the French coordinator for the negotiation, ANSSI welcomes the adoption of the NIS Directive which provides for strengthening of national cybersecurity capabilities; establishes a framework for cooperation among Member States – both at political and operational levels – and foresees measures aiming at strengthening the cybersecurity of “operators of essential services” and “digital service providers”.
Starting this Fall, ANSSI will coordinate with all relevant stakeholders in order to transpose the Directive into France’s national Law.
ANSSI will also to take part in activities and cooperations to be launched at EU level following the adoption of the Directive, taking into account the upmost importance of dialogue on a European level. Published in October 2015, France’s National Digital Security Strategy indeed underlined the importance for Europe to achieve its Digital Strategic Autonomy, which cyberresilience constitutes one of the main pillars.
ANSSI therefore intends to work with all Member States, the European Commission and the European Network and Information Security Agency (ENISA) towards the successful implementation of the NIS Directive. In particular, ANSSI wises to underline the important role to be played by ENISA, with which ANSSI has recently strengthened its engagement.