New cybersecurity law could encounter insufficient capacities, Czech stakeholders warn

 

The forthcoming set of broader EU cybersecurity requirements could hit obstacles in the form of insufficient financial and staff capacities, prompting fears in the Czech Republic that they could create new headaches, particularly for private companies.

The Czech Interior Ministry and the Czech National Cyber and Information Security Agency (NÚKIB) experienced massive attacks on their systems in mid-April. Moreover, a few regional airports’ websites and the major railway operator’s mobile app also faced failures recently. 

Despite the high priority of crucial institutions regarding cybersecurity, these incidents show that they are still vulnerable to external attacks. 

The EU’s forthcoming cybersecurity directive – so-called NIS2 – is intended to improve EU countries’ resilience. More stringent supervision measures and enforcement are expected to be introduced. However, new rules might be quite challenging. (...)