Thursday

28th Sep 2023

  1. News
  2. Digital

Germany tells EU to slow down on new cyber rules

  • The directive on security of network and information systems should be implemented first, according to German official. (Photo: Pixabay)

By

Germany has poured cold water on the European Commission's proposal for a stronger EU cybersecurity agency.

A German government agency official said on Tuesday (10 October) at the Cybersec conference in Krakow that EU member states should first focus on implementing the rules that have already been agreed.

Read and decide

Join EUobserver today

Become an expert on Europe

Get instant access to all articles — and 20 years of archives. 14-day free trial.

Choose your plan

... or subscribe as a group

Don't miss out on

Our exclusive news stories and investigations. Influential. Investigative. Independent.

Lisbeth Kirk

Why join?

Watch our founder Lisbeth Kirk explain the reasons in this 30-second video.

"The most important response I would like to give is: 'first comes first'," said Roland Hartmann, head of international relations at the German federal office for information security (BSI).

"We at BSI appreciate the ambition of the European Commission to look beyond the NIS directive," said Hartmann, referring to the first-ever pan-EU set of rules on cybersecurity, the directive on security of network and information systems (NIS).

"But we should not neglect that we first need to establish, I would like to call it basic reading and writing skills in Europe, as the NIS directive tells us to, before we get to the advanced mathematics level, as intended by the cybersecurity package," he said metaphorically.

The NIS directive was adopted in July 2016. Member states have until 9 May 2018 to transpose it into national law.

Enisa to become European Cybersecurity Agency

Last month, the EU commission published a legislative proposal on cybersecurity, foreseeing a beefed up role for the Greece-based European Union Agency for Network and Information Security (Enisa), which would be restyled as European Cybersecurity Agency.

The new agency would have a bigger budget and staff, although a spokesman for Enisa told EUobserver earlier on Tuesday that the exact number of additional staff will only be known once the proposal has become law.

The plan can only come into force if it has the backing of the European Parliament and the Council of the EU, in which national governments meet.

In the Council, Germany's voice is very strong because it is the largest EU member state.

Hartmann downplayed expectations of Enisa, which currently has 84 staff members, as a pan-EU cybersecurity hub.

"It is important to see that EU member states should create own capacities, and invest in cybersecurity," he said.

"Even an expected Enisa, with a size of 125 or more people, may not substitute increased national efforts. Even more important: we may not risk the already developed national achievements, and we should not risk a thorough implementation of the NIS directive."

The NIS directive will require certain companies to report security breaches to their national government. That will mean there needs to be trust between the two sides - industry and government.

Hartmann said the BSI officials in Germany, as well as national authorities in other countries, have established this "mutual relationship of trust and support" with the relevant industries.

"A pure regulatory, formalistic approach would not lead to the beneficial situation [of] information sharing in Europe," he said.

"Ownership, trust and on-the-ground support are more essential and relevant than the best regulation."

Site Section

  1. Digital

Related stories

  1. EU agency to fight election hacking
  2. EU 'underestimated' cyber-crime
  3. Greece keen to keep EU cybersecurity agency
  4. EU to beef up cybersecurity agency
  5. EU cyber chief says expectations exceed resources
  6. UK tech worried over post-Brexit data sharing
EU agency to fight election hacking

A new-model EU cybersecurity agency could help states defend their elections against "hybrid attacks", the Commission has said.

Interview

EU 'underestimated' cyber-crime

"Cybercrime is growing much, much faster than I think we anticipated," the EU commissioner for security, Julian King, told EUobserver.

Interview

Greece keen to keep EU cybersecurity agency

Greek official welcomed proposal to give the agency a bigger role, downplayed its kitchen sink problems, and said he was himself the victim of a computer virus.

EU to beef up cybersecurity agency

The Commission's president proposed to set up a European Cybersecurity Agency. The EU already has an agency for Network and Information Security.

AI will destroy more female jobs than male, study finds

About four percent of global female employment is subject to potential automation through generative AI technologies, compared to only 1.4 percent of male employment. The trend is even more pronounced in high-income countries, a new study reveals.

Column

EU lobbying clean-up — what happened to that?

Six months after Qatargate, as institutional inertia and parliamentary privileges weigh in, the sense of gravity and collective resolve have all but disappeared. MEPs show little enthusiasm for reform of the rules that today allow them significant outside paid activities.

Latest News

  1. Poland's culture of fear after three years of abortion 'ban'
  2. Time for a reset: EU regional funding needs overhauling
  3. Germany tightens police checks on Czech and Polish border
  4. EU Ombudsman warns of 'new normal' of crisis decision-making
  5. How do you make embarrassing EU documents 'disappear'?
  6. Resurgent Fico hopes for Slovak comeback at Saturday's election
  7. EU and US urge Azerbijan to allow aid access to Armenians
  8. EU warns of Russian 'mass manipulation' as elections loom

Stakeholders' Highlights

  1. International Medical Devices Regulators Forum (IMDRF)Join regulators, industry & healthcare experts at the 24th IMDRF session, September 25-26, Berlin. Register by 20 Sept to join in person or online.
  2. UNOPSUNOPS begins works under EU-funded project to repair schools in Ukraine
  3. Georgia Ministry of Foreign AffairsGeorgia effectively prevents sanctions evasion against Russia – confirm EU, UK, USA
  4. International Medical Devices Regulators Forum (IMDRF)Join regulators & industry experts at the 24th IMDRF session- Berlin September 25-26. Register early for discounted hotel rates
  5. Nordic Council of MinistersGlobal interest in the new Nordic Nutrition Recommendations – here are the speakers for the launch
  6. Nordic Council of Ministers20 June: Launch of the new Nordic Nutrition Recommendations

Stakeholders' Highlights

  1. International Sustainable Finance CentreJoin CEE Sustainable Finance Summit, 15 – 19 May 2023, high-level event for finance & business
  2. ICLEISeven actionable measures to make food procurement in Europe more sustainable
  3. World BankWorld Bank Report Highlights Role of Human Development for a Successful Green Transition in Europe
  4. Nordic Council of MinistersNordic summit to step up the fight against food loss and waste
  5. Nordic Council of MinistersThink-tank: Strengthen co-operation around tech giants’ influence in the Nordics
  6. EFBWWEFBWW calls for the EC to stop exploitation in subcontracting chains

Join EUobserver

Support quality EU news

Join us