The NIS (UE 2016/1148) Directive and the Italian transposition DLgs 65/2018 establish requirements to entities dealing with those services identified as critical infrastructures; this Directive is adopted in addition to other similar rules in specific sectors such as banking and telecommunication operators.
The primary and unavoidable goal is the achievement of high security levels of processes, networks, systems and information regarding Critical infrastructures. This security level has to be proved to the supervisory authorities.
The Italian Decree-Law No. 105/2019 establishes the National Cyber Security Perimeter regarding “public and private entities and operators with registered offices in the national territory, providing an essential service for the maintenance of civil, social or economic activities that are fundamental for the interests of the state and the prejudice for national security which may arise from the malfunctioning or interruption, even on a partial basis, or misuse.”
Gerico Security supports Critical Infrastructures to set out the measures for the achievement of high security levels in compliance with the best sectoral practices as follows:
Our experience enables us to transform a theoretical model into an effective tool for security, operational and critical service continuity.
Gerico Security has set out the ISO/IEC 17020 Inspection Body and inspection procedures in compliance with the National Cybersecurity and Information Technology Security Action Plan issued by the President of the Council of Ministers, action item 7 and action item 11 in particular.
The Inspection Body’s activities enable the OES- Operators of essential services to verify and formally attest the current information and cyber security maturity levels according to the Guidelines for OES whose cybersecurity aspects are based on CSF – National Cyber Security Framework V2.0.
You can call us at +393496847531 to get to know us better