Cyber Security Practitioner

Volume: 3 Issue: 6
(June 2017)


The Civil Liberties, Justice and Home Affairs (‘LIBE’) Committee of the European Parliament released on 9 June 2017 its draft report (‘Draft Report’) on the European Commission’s proposal for a Regulation of the European Parliament and of the Council on Privacy and Electronic Communications (‘the Draft ePrivacy Regulation’), which aims to repeal Directive 2002/58/EC. The Draft Report proposes a number of amendments to the Draft ePrivacy Regulation, after having received input from institutions and stakeholders. / read more

The European Central Bank (‘ECB’) confirmed, in a speech in Frankfurt given by Sabine Lautenschläger, Vice-Chair of the ECB’s Supervisory Board, on 19 June 2017, that this summer it will launch a cyber incident reporting framework which will require all banks it supervises to report all significant cyber incidents. / read more


The UK will deliver the GDPR. The Queen’s Speech all but said so. This provides much needed clarity and certainty for organisations operating on the world stage and for citizens it secures their fundamental rights and freedoms over their data. Clearly, we will get a new Data Protection Act, which at a minimum will transpose the GDPR’s requirements, but in all probability it will go even further, by providing clarity over issues such as exemptions and carve outs, where the GDPR is plainly sub-optimal. / read more

The UK Department for Business, Energy & Industrial Strategy published its Civil Nuclear National Cyber Security Strategy in February 2017 to bolster the safety and security of nuclear operations that form part of the UK’s critical national infrastructure. The Strategy, which has been produced in consultation with the Office for Nuclear Regulation, is complemented by further associated regulatory transformation to enable the civil nuclear industry to become more cognisant of the rapidly evolving threats and to be in a position of increased cyber resilience. Phil Litherland and Rob Orr, Principal Consultants Strategy & Advisory at cyber security consultancy Context IS, provide detailed insight into the evolution of civil nuclear cyber security obligations in the UK. / read more

Employees are among the biggest security risks to a company, often due to a lack of knowledge and engagement with cyber security. In response to Financial Conduct Authority (‘FCA’) Executive Director Nausicaa Delfas’ recent statement that financial services firms should reward employees who identify cyber attacks, Ellie Hurst and Mike Gillespie of Advent IM consider how companies should go about raising employees’ awareness of cyber threats. / read more

The era of connected devices is upon us; recently the United States Government Accountability Office (‘GAO’) released a formal technology assessment of the Internet of Things (‘IoT’). Aside from noting how the IoT and its connected devices are growing in number and societal importance, the GAO highlighted several areas of concern for the current and future growth of the IoT, and included some possible solutions to address these concerns. The report also noted the difficulty that governments and businesses will have in coming together to implement solutions. Ted Claypoole, Partner at Womble Carlyle Sandridge and Rice, assesses the GAO’s IoT report and shares his thoughts on the likely issues raised by the rapidly increasing omnipresence of connected devices. / read more

Romania has enjoyed significant growth in its IT sector and cyber security companies (such as the prestigious local company Bitdefender) have been at the forefront - thereby underscoring the need for the development of a modern cyber security regulatory regime in the country. Ileana Glodeanu, Partner at Wolf Theiss, analyses the current state of cyber security in Romania and considers how it might develop under the Directive on security of network and information systems (‘NIS Directive’). / read more

Lorna Cropper and Sabba Mahmood of Fieldfisher LLP examine the lessons to be drawn from the UK Information Commissioner’s Office’s (‘ICO’) recent monetary penalty notice to Construction Materials Online Ltd for companies operating an online business. / read more

Digital campaigning organisation Open Rights Group recently published what it claims to be a leaked draft of the Investigatory Powers (Technical Capability) Regulations 2017 (‘the Regulations’), which are currently the subject of a targeted consultation by the Home Office. Open Rights Group claims that this consultation concluded on 19 May 2017 and that the draft was made available only to a limited number of stakeholders. Liz Fitzsimons and James Ruane of Eversheds Sutherland LLP provide analysis of the leaked draft and consider the implications of its content. / read more

About Cyber Security Practitioner:

Cyber Security Practitioner, the most recently launched monthly publication from Cecile Park Media, provides a multi-disciplinary view on the cyber security challenges facing global businesses and delivers insight into operational change. It covers cyber security regulation, data breach, data security, cyber risk, cyber crime, ethical hacking, privacy and data protection, cyber infrastructure, technical solutions, risk management, information assurance, security standards, liability, consumer protection, ransomware and other cyber threats, cyber insurance... /read more

Search Publication Archives

Our publication archives contain all of our articles.
Can’t find what you are looking for?
Try an Advanced Search

Log in to cyber security practitioner
Subscribe to cyber security practitioner
Register for a Free Trial to cyber security practitioner
cyber security practitioner Pricing

Social Media

Follow cyber security practitioner on TwitterView cyber security practitioner LinkedIn Profilecyber security practitioner RSS Feed