When the lights went out in 2023, the Federal Government established the new Cybersecurity guideline for Brazil. In the view of Security Leaders and Experts, this is an important step in a long process of increasing the country's cyber maturity
By Patricia Peck, founding partner of Peck Advogados and professor of Digital Law at ESPM
The National Cybersecurity Policy (PNCiber), established by decree in the last week of 2023, generated several repercussions in the Brazilian community of Information Security Leaders and professionals. With the aim of guiding IS management in the country, the resource aims to guarantee fundamental protection rights of people active in cyberspace, supporting the protection and resilience work of organizations, individuals and the public authorities themselves.
In the view of CISOs from the Security Leaders community, establishing more transparent rules for acting and investing in Cybersecurity in the different sectors of the economy is essential to increase the maturity of the entire social group in Brazil. Based on determinations guided by National Policy, companies must consider the impacts of cyber risks on the market and National sovereignty.
However, leaders still consider it necessary to advance changes in the forms of coercion against cyber crimes, investing in investigation structures and institutional intelligence. In this way, it will be possible to strengthen Public Security's perception of this scenario and more consistently support the victims of these attacks.
Among the objectives of the National Cybersecurity Policy are the fight against cybercrime and other malicious actions in cyberspace; adoption of cyber protection and risk management measures to control vulnerabilities; increase the resilience of organizations to incidents; and develop education, training and scientific research in favor of Cybersecurity.
The document also defines the establishment of a National Cybersecurity Council, formed by members of the Federal executive branch, civil society and academic representations and the business sector related to the sector. The council will be coordinated by the President's Institutional Security Office (GSI) and will be responsible for implementing the Policy and proposing updates to the project.
According to the CEO and Founding Partner of Peck Advogados, Patrícia Peck, PNCiber is expected to impact the sector by reducing the number of cyber incidents in Brazil, increasing the security of information and critical systems, improving the ability to respond to cyber incidents and strengthening international cooperation in Cyber.
“The National Cybersecurity Policy emerges as an essential pillar in preserving Brazil’s digital integrity in the face of an increasingly volatile and adverse cyberspace. It seeks to promote robust Cybersecurity in the country and catalyze incisive digital action, undermining the proliferation of cybercrimes and illegal conduct in the virtual environment”, stated Patrícia.
Source: security report