Call for volunteers: ISACA’s EU & UK Advocacy Task Forces
Applications are open to participate in ISACA’s 2025 EU and UK Advocacy Task Forces, which support the development of ISACA’s positions on key legislation, public affairs, and policy issues.
Apply for either task force by 2 December (requires login to view the opportunity and apply):
|
|
EU Council adopts Cyber Resilience Act
On 10 October 2024, the Council of the EU adopted the Cyber Resilience Act. This new legislation will apply to manufacturers, distributors, and importers of hardware and software.
Why it matters:
- It aims at improving the security of digital products [e.g., software, webcams, smart TVs and other Internet of Things (IoT) devices] in Europe throughout their supply chains and lifecycles.
- It also sets cybersecurity requirements for the design, development, production, and marketing of hardware and software products.
What's next:
- The act is awaiting publication in the Official Journal in the coming weeks. It will enter into force 20 days after publication and will apply 36 months after its entry into force with some provisions to apply at an earlier stage.
- Learn more.
|
|
Niinistö Report calls for strengthening Europe’s civil and military readiness
The details:
- The report includes recommendations on how to enhance the EU’s civilian and military preparedness and readiness for future crises.
- The report also calls for “adjusting the modus operandi” on the pact for digital and cybersecurity skills and skills academies and for further action on the EU Cybersecurity Skills Academy, including more funding and “possible certification/attestation mechanisms.”
- Learn more.
|
|
Team Europe wins the International Cybersecurity Challenge 2024
During the International Cybersecurity Challenge (ICC) that took place in Santiago (Chile) 28 October - 1 November, the European team won the competition for the second year in a row.
- ISACA was proud to serve for the third year in a row as a founding supporter and sponsor of the ICC event.
Why it matters:
- This annual event which includes the support of ENISA and CISA, among others, gives present and future cyber talent the chance to shine on an international stage.
- Learn more and see photos.
|
|
UK DSIT publishes details of Cyber Security and Resilience Bill
The Department of Science, Innovation, and Technology (DSIT) has published details about the Cyber Security and Resilience Bill expected in Parliament in early 2025.
Why it matters:
- The existing UK regulations reflect law inherited from the EU (the NIS regulations from 2018, which have now been superseded in the EU.)
- Through this new bill, the UK government aims to protect critical national infrastructure and digital services, by strengthening the UK’s cyber defenses.
The details:
- The new bill will update the regulatory framework for cyber regulation. It will expand the remit of the regulation to protect more digital services and supply chains.
- Learn more.
|
|
Data Use and Access Bill in Parliament
The Data (Use and Access) Bill was introduced in the House of Lords on 23 October, with the second reading taking place on 19 November.
Why it matters:
- The bill paves the way for the “smart data” model to be used in more sectors, and for establishing a trust framework for digital verification services.
- While its core objective is to facilitate economic growth by improving public services, the bill also focuses on data accessibility and security by businesses, and data governance more broadly within the United Kingdom.
- Learn more.
|