Germany: Implemented Second Law to increase the security of Information Technology Systems ( IT Security Act 2.0) including cybersecurity authority governance

Implemented Second Law to increase the security of Information Technology Systems ( IT Security Act 2.0) including cybersecurity authority governance

On 28 May 2021, the Security of Information Technology Systems (IT Security Act 2.0), including cybersecurity authority governance, entered into force. The Act gives the Federal Office for Information Security the authority to require companies in the special public interest and critical infrastructure operators to make organisational and technological changes to bring their cybersecurity system into compliance with the cybersecurity standards and approve applications for the IT security label.

Original source

Scope

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

infrastructure provider: internet and telecom services, platform intermediary: user-generated content

Implementation Level

national

Government Branch

legislature

Government Body

parliament

Complete timeline of this policy change

Hide details

2020-12-16

under deliberation

On 1 January 2021, the Security of Information Technology Systems (IT Security Act 2.0), including …

2021-05-07

adopted

On 7 May 2021, the Security of Information Technology Systems (IT Security Act 2.0), including cybe…

2021-05-28

in force

On 28 May 2021, the Security of Information Technology Systems (IT Security Act 2.0), including cyb…

Description

Implemented Second Law to increase the security of Information Technology Systems ( IT Security Act 2.0) including cybersecurity authority governance

Scope

Complete timeline of this policy change