Deloitte comments on the proposed EU directive on network and information security
7 February 2013
James Nunn-Price, lead cyber security partner at Deloitte, said:
“Organisations are under constant bombardment from cyber attacks and we believe companies should prepare for when a breach will happen. While it is important to concentrate on preventative measures, no matter how high you build your walls hackers will eventually find a way around. To minimise the damage, organisations need to plan how they will detect and respond when a breach does happen. Businesses are recognising that cyber security and resilience is not just an IT issue but a crucial business issue, and one that needs board-level support.
“The EU’s directive on network and information security (NIS) comes at a time when any measures to promote collaboration and awareness around the cyber threat are welcome. The directive will require organisations to report major security incidents, so inevitably it will lead to an increase in incidents reported. Therefore before it is implemented we should consider the impact it could have on UK plc. This could make the UK appear to be an unsafe place to do business, while it might simply be a reflection of good monitoring and reporting. In addition, companies often don’t know they have been breached, so will not know they have anything to report. In these situations organisations will need clarity on how the directive will affect them.”
Note to editors
In this press release references to Deloitte are references to Deloitte LLP, which is among the country's leading professional services firms.
Deloitte LLP is the United Kingdom member firm of Deloitte Touche Tohmatsu Limited (“DTTL”), a UK private company limited by guarantee, whose member firms are legally separate and independent entities. Please see www.deloitte.co.uk/about for a detailed description of the legal structure of DTTL and its member firms.
The information contained in this press release is correct at the time of going to press.
Member of Deloitte Touche Tohmatsu Limited.