Public Hearing of the Committee on Home Affairs and Homeland Security on the NIS 2 Implementation and Cybersecurity Strengthening Act
Berlin, October 29, 2024 – The Committee on Home Affairs and Homeland Security held a public hearing on the NIS 2 Implementation and Cybersecurity Strengthening Act. The hearing was attended by representatives from government agencies, industry associations, and academic institutions.
The NIS 2 Implementation and Cybersecurity Strengthening Act is a comprehensive piece of legislation that aims to strengthen cybersecurity in Germany. The bill implements the EU’s NIS 2 Directive, which sets out new requirements for businesses and organizations that provide essential services. The bill also includes provisions to strengthen the cybersecurity of critical infrastructure, and to improve coordination between government agencies and the private sector.
During the hearing, witnesses expressed their support for the bill, but also raised concerns about some of its provisions. Some witnesses argued that the bill’s reporting requirements were too burdensome, and that they would discourage businesses from investing in cybersecurity. Others argued that the bill did not go far enough to address the cybersecurity risks facing Germany.
The Committee on Home Affairs and Homeland Security is expected to vote on the bill in the coming weeks. If passed, the bill would become law and would come into effect in 2025.
Background
The NIS 2 Directive is a major piece of EU legislation that aims to strengthen cybersecurity across the bloc. The directive sets out new requirements for businesses and organizations that provide essential services, such as energy, transportation, and healthcare. These businesses and organizations are required to implement a number of security measures, such as risk assessments, incident reporting, and business continuity planning.
The NIS 2 Implementation and Cybersecurity Strengthening Act is the German government’s response to the NIS 2 Directive. The bill implements the directive’s requirements into German law, and also includes additional provisions to strengthen cybersecurity in Germany.
Witnesses
The following witnesses testified at the hearing:
- Mr. Christian Früh, Director General, Federal Office for Information Security (BSI)
- Mr. Hannes Federrath, Managing Director, Digitalverband Bitkom
- Mr. Prof. Dr. Claudia Eckert, University of Potsdam
- Ms. Sabine Smentek, Director, Cybersecurity Policy, German Federal Ministry of the Interior
- Mr. Dr. Oliver Grün, Head of Department, Cybersecurity, German Federal Ministry of Economics and Technology
Key Issues
The following key issues were discussed at the hearing:
- The scope of the bill: Some witnesses argued that the bill’s scope was too broad, and that it would impose unnecessary burdens on businesses. Others argued that the bill’s scope was too narrow, and that it did not cover all of the critical sectors that need to be protected.
- The reporting requirements: Some witnesses argued that the bill’s reporting requirements were too burdensome, and that they would discourage businesses from investing in cybersecurity. The BSI defended the reporting requirements, arguing that they are necessary to track cybersecurity threats and to identify trends.
- The role of the BSI: Some witnesses expressed concerns about the BSI’s role in implementing the bill. They argued that the BSI does not have the resources or the expertise to oversee cybersecurity for the entire country. The BSI defended its role, arguing that it is the only agency with the necessary expertise and experience to carry out this task.
Next Steps
The Committee on Home Affairs and Homeland Security is expected to vote on the bill in the coming weeks. If passed, the bill would become law and would come into effect in 2025.
The AI has provided us with the news.
I’ve asked Google Gemini the following question, and here’s its response.
Pressemitteilungen a new article on 2024-10-29 08:15 titled “Öffentliche Anhörung des Ausschusses für Inneres und Heimat zum NIS-2-Umsetzungs- und Cybersicherheitsstärkungsgesetz”. Please write a detailed article on this news item, including any relevant information. Answers should be in English.
72