Perspectives

ENISA Cybersecurity Standardization and the Cybersecurity Act

Certifications required for performing cyber security testing are well defined, but up until now there was no EU certification framework for IT products being developed and sold. The EU Cybersecurity Act, adopted a few days ago, intends to change that by establishing a European cybersecurity certification framework for ICT products, services and processes. Standardisation will play an important role in the new framework. The Cybersecurity Act will entry into force starting May 2019.

European Network and Information Security Agency (ENISA) will take the leadership role of sole reference point for a new cybersecurity certification scheme in order to avoid certification scheme fragmentation within the EU.

This article provides further insight on what cybersecurity framework consists in and how it impacts financial institutions.

Authors

Dimitrios Goranitis

Central Europe FSI leader

digoranitis@deloittece.com

+40 21 222 16 61

Dimitrios Goranitis is Financial Services Industry Risk and Regulatory Advisory Partner in Deloitte Romania. Dimitrios is leading Deloitte’s risk service offering in Central Europe focusing on banking... More

Audit & Assurance

Financial Advisory

Consulting

Legal

Tax

Risk Advisory

Deloitte Private

Consumer

Energy, Resources & Industrials

Financial Services

Life Sciences & Health Care

Public Sector

Technology, Media & Telecommunications

Real Estate & Construction

Job Search

Deloitte Alumni

Students & Graduates

Experienced hires

Diversity & Inclusion at Deloitte Romania

European Regional Delivery Center

Regional Audit Delivery Center

Tax & Legal Delivery Centre

ENISA Cybersecurity Standardization and the Cybersecurity Act

Authors

Dimitrios Goranitis

Central Europe FSI leader

Recommendations