On the proposal of the Cisr, the Prime Minister has updated the list of subjects falling within the national security perimeter. And on June 23 the tests start
Seven months after the decree with which the then Prime Minister Giuseppe Conte had identified the companies falling within the National Security Perimeter, his successor in Palazzo Chigi, Mario Draghi, updated that list on the proposal of the Interministerial Committee for the Security of the Republic which contains over 100 companies. The precise number and name of the companies are top secret, for obvious security reasons. But as it turns out a Formiche.net a few dozen companies have been added.
This is an extension of the scope of application of the Perimeter, the architecture set up by Dis under the direction of the Deputy Director Roberto Baldoni, whose name is shortlisted for the leadership of the nascent National Security Agency along with that of Nunzia Ciardi, today head of the Postal Police. Those in the list are public and private entities that, overall, exercise 223 essential State functions through networks, information systems and IT services, or provide essential services for the maintenance of strategic civil, social or economic activities. At the same time, some essential State functions and services already included in the perimeter were refined.
As stated in a note from Palazzo Chigi, in the next few days the Security Information Department will notify the interested parties who, within six months, will be required to communicate the networks, information systems and IT services they use respectively for the ” provision of the essential functions and services of the State included in the perimeter.
Therefore, the level of cyber resilience of the most sensitive actors for national security purposes is further raised, reads the Palazzo Chigi press release. It does not seem a coincidence that this happens in the days following the G7 and the NATO summit in which a lot of space was dedicated to cyber domination, where the United States of Joe Biden they appear determined to strengthen ties with allies and partners, reaching the point of extending Article 5 of the NATO Treaty (the collective defense clause) to cyber attacks.
The move by President Draghi comes just over a week from the start of the “tests” on the Perimeter. In fact, on 23 June, the architecture will begin to be operational with regard to the subjects entered on 22 December last. The latter will therefore be required to apply the envisaged safety measures and to notify the Italian Csirt of any accidents that may occur.
The list of security measures and the taxonomy of the incidents for which the subject is required to notify were published last Friday, 11 June 2021, in the Official Gazette, continues the note with reference to the second Dpcm of the Perimeter (commented on Formiche.net by the lawyer Stefano Mele). To allow for an adequate organization of the subjects included in the perimeter to comply with the accident notification procedures, the latter will proceed on an experimental basis until 31 December 2021.