Biznes Fakty
Cybersecurity. „The project is urgent and a priority”
The proposed amendment to the national cybersecurity framework is set to be presented to the Sejm in June, according to Marcin Wysocki, deputy director of the Cybersecurity Department at the Ministry of Digital Affairs. He highlighted that this change is crucial and of high importance.
– On Tuesday, the Council of Ministers’ Committee for National Security expressed a favorable opinion on the draft amendment concerning the national cybersecurity framework, as Wysocki noted during Tuesday’s meeting of the Digitalization, Innovation and Modern Technologies Committee of the Sejm of the Republic of Poland. He further mentioned that the draft will be forwarded to the Standing Committee of the Council of Ministers „as quickly as possible”.
The subsequent phase will involve government approval of the proposal. – Should the necessity arise, a legal commission may be formed, Wysocki remarked.
The representative from the Ministry of Digital Affairs confirmed that within the current six-month period, by the end of June, the ministry intends to present the proposal to parliament.
The government is implementing the EU NIS 2 directive
The UKSC amendment aims to implement the EU NIS 2 directive regarding cybersecurity as well as the 5G Toolbox, an EU guideline concerning the security of 5G networks. Wysocki recalled that on November 27, 2024, the European Commission (EC) issued formal charges against Poland for failing to execute NIS 2.
– On February 5, we provided a response to the formal accusations, in which we stated that parliamentary deliberations on the proposal would occur in the first half of this year, Wysocki said. He added that the next step would be for the EC to issue a so-called reasoned opinion to Poland regarding the delayed implementation of NIS 2.
– The response will be developed by the Ministry of Digital Affairs and submitted to the Commission by July 7, as this deadline stems from the EC’s correspondence – noted Wysocki, the deputy director of the digital affairs department at the Ministry of Digital Affairs.
Wysocki emphasized that Poland is among the 19 EU countries that have not timely implemented NIS 2, and in terms of the 5G Toolbox implementation, we are „unfortunately at the very bottom,” as over 20 countries have already completed it.
„The project is urgent and a priority”
– I firmly believe that the Minister of Digital Affairs and the entire government do not require additional motivation. The passage of the UKSC amendment is also a significant milestone for the KPO. For these reasons and others, this project is urgent and a priority, Wysocki stated.
The current iteration of the KSC Act dates back to 2018 and does not incorporate provisions for the implementation of the EU NIS 2 directive on cybersecurity. The deadline for integrating NIS 2 into the national legal framework expired on October 18, 2024.
The Ministry of Digital Affairs unveiled a draft amendment to the UKSC in April of last year. The objective of the latest version of the regulation is to adjust the rules to the evolving landscape of cyber threats and enhance the resilience of IT systems in critical sectors of the economy.
The amendment mandates entities to adopt stricter risk management protocols and report security breaches. The proposal put forth by the ministry also includes a process for designating a hardware or software supplier as a so-called high-risk supplier. The Ministry of Digital Affairs indicated that the Council of Ministers is expected to adopt the amendment to the KSC Act in the first quarter of this year.
