Your Subscription

We would like to ensure that you are still receiving content that you find useful – please confirm that you would like to continue to receive ILO newsletters.





Login
Twitter LinkedIn




Login
  • Home
  • About
  • Updates
  • Awards
  • Contact
  • Directory
  • OnDemand
  • Partners
  • Testimonials
Forward Share Print
Walder Wyss

Federal Council moves forward in protection against cyber risks

Newsletters

12 June 2020

Tech, Data, Telecoms & Media Switzerland


On 27 May 2020 the Federal Council adopted the Ordinance on Protecting against Cyber Risks (OPCy, available in French and German), which is set to enter into force on 1 July 2020. This move is the next step in a series of measures taken by the Federal Council to adopt a new organisational structure and implement a national strategy to protect Switzerland against cyber risks (NCS, available in German, French, Italian and English).

The OPCy regulates the structure and tasks of several cybersecurity bodies of the federal administration. A so-called 'Cyber Group' (Article 8 of the OPCy) is composed of representatives from several federal departments, a representative of the cantons and is presided over by the federal cybersecurity delegate. The Cyber Group's tasks mainly focus on the assessment of cyber risks and existing mechanisms in the fields of cybersecurity, cyber defence and cybercrime. It also supports the interdepartmental management of cyber incidents.

Moreover, the OPCy provides for the development of a National Cyber Security Centre (NCSC) – also headed by the federal cybersecurity delegate and encompassing the existing structure known as MELANI – that will coordinate Switzerland's efforts in the field of cybersecurity and whose tasks will namely include:

  • operating a national contact point on cyber risks that centralises and analyses reports from the federal administration, economic sectors, cantons and general population;
  • running the national Computer Emergency Response Team (GovCERT);
  • managing the federal administration's specialised IT security service; and
  • assisting different offices in implementing the NCS and developing, implementing and evaluating standards and regulations in the field of cybersecurity.

The NCSC also manages cyber incidents that threaten the functioning of the federal administration, in which case it can obtain all necessary information from the service providers and beneficiaries in question and take emergency measures. Under Article 12(2) of the OPCy, the NCSC may also process data relating to cyber incidents that is useful, even indirectly, to the protection of the federal administration against cyber risks.

Notably, the OPCy further regulates some compliance aspects with regard to external service providers mandated by federal administrative units. Federal administrative units must integrate cybersecurity directives – presumably those enacted by federal cybersecurity institutions – in their contracts with external service providers (Article 14 of the OPCy). In such contractual relationships, the provider must inform the beneficiary of detected vulnerabilities or cyber incidents and the parties must define together a process for managing cyber incidents. Moreover, should this process fail to resolve a cyber incident, the affected parties must inform the NCSC to establish the appropriate course of action.

Along with the adoption of the OPCy, the Federal Council has also planned for 20 additional positions in the respective offices for cyber risk protection. With already 24 new positions approved in May 2019, this commitment to increase available resources and institutional centralisation reflects a welcome development in the strengthening of cyber security in Switzerland.

For further information on this topic please contact Jürg Schneider, Hugh Reeves or Ashley Robinson at Walder Wyss by telephone (+41 58 658 58 58) or email (juerg.schneider@walderwyss.com, hugh.reeves@walderwyss.com or ashley.robinson@walderwyss.com). The Walder Wyss website can be accessed at www.walderwyss.com.

The materials contained on this website are for general information purposes only and are subject to the disclaimer.

ILO is a premium online legal update service for major companies and law firms worldwide. In-house corporate counsel and other users of legal services, as well as law firm partners, qualify for a free subscription.

Forward Share Print

Authors

Jürg Schneider

Jürg Schneider

Hugh Reeves

Hugh Reeves

Ashley Robinson

Ashley Robinson

Register now for your free newsletter

View recent newsletter

More from this firm

  • Parliament adopts Information Security Act
  • Digital transformation: new cloud strategy and Swiss Cloud initiative
  • Proposed Film Act revision: investment obligation for online film providers and quotas for European films
  • Federal Council in favour of requiring critical infrastructures to report cyberattacks
  • Revised telecoms legislation enters into force

More articles

  • Home
  • About
  • Updates
  • Awards
  • Contact
  • My account
  • Directory
  • OnDemand
  • Partners
  • Testimonials
  • Follow on Twitter
  • Follow on LinkedIn
  • Disclaimer
  • Privacy policy
  • GDPR Compliance
  • Terms
  • Cookie policy
Online Media Partners
Inter-Pacific Bar Association (IPBA) International Bar Association (IBA) European Company Lawyers Association (ECLA) Association of Corporate Counsel (ACC) American Bar Association Section of International Law (ABA)

© 1997-2021 Law Business Research

You need to be logged in to make a comment. Log in here.
Many thanks. Your comment has been sent.

Your details



Your comment or question *