Via dei Gracchi 32, Roma
The EU directive 1148/2016 (so-called NIS Network and Information Security), transposed into Italian law with Legislative Decree no. 18 May 2018. 65, dictates a framework and a minimum common standard of the measures necessary to achieve a high level of security of networks and information systems, leaving the Member States the freedom to independently determine the concrete methods of implementation, as well as the possibility of raising the level of safety.
The legislation is aimed at:
The recipients are called upon to adopt adequate and proportionate technical-organizational measures for risk management and to prevent or limit the impact of IT incidents, so that the continuity of the service is guaranteed.
The directive also provides for the obligation to notify the Computer Security Incident Response Team set up at the Presidency of the Council of Ministers (known as the Italian CSIRT), without undue delay, of incidents that have a significant impact.
In the event of a violation by operators of essential services, the competent authorities may apply administrative penalties of up to € 150,000 and up to € 125,000 if the violation was committed by digital service providers.
Argo CyberSecurity offers advice and assistance in defining IT management, prevention and defense models that comply with the requirements of the NIS Directive, guaranteeing constant updating of control processes aimed at risk mitigation.