Revised Cyber Security Strategy responds to changed security environment

In line with the Programme of Prime Minister Petteri Orpo's Government, Finland's Cyber Security Strategy has been revised to respond to the changed security environment. The strategy will make cyber security a more integral part of Finland's concept of comprehensive security.

The previous Cyber Security Strategy was published in 2019. Since then the security environment in Finland and Europe has changed significantly due to the COVID-19 pandemic, Russia's full-scale invasion of Ukraine, and Finland's membership in NATO. Due to such changes, response and countermeasures have been added to the strategy as a completely new area.

Cyber security integrated in comprehensive security

The objectives of the revised strategy extend to 2035. The strategy aims to make cyber security an integral part of Finland's concept for comprehensive security. 

"The Cyber Security Strategy tells a lot about Finland. When it comes to Finland's security, we always strive for the best possible performance. While the state of cyber security in Finland may be good by international standards, we cannot become complacent. We must keep improving. We should build up broad expertise and make use of the opportunities offered by technology, but also understand the threats associated with such opportunities,” says Minister of Transport, Communications and the Interior Lulu Ranne.

The strategy is divided into four sections:

• a competent and innovative cyber ecosystem that allows experimentation
• society's strong cyber resilience and operational reliability
• a robust model for national and international cooperation
• a secured sovereignty and timely response to threats.

Each section includes strategic objectives and development proposals.

Strategy revision in context of broader project to develop security management

On 8 March 2024, the Prime Minister’s Office set up a project to develop an operating model for government security management. A sub-group led by the National Cyber Security Director was appointed to prepare the revision of the Cyber Security Strategy. In addition to the working group, nearly one hundred parties from the public and private sectors, the scientific community and civil society organisations have contributed to the strategy drafting.

"I would like to thank all the hundreds of experts who contributed to the drafting of the Cyber Security Strategy. Our cooperation will continue with the preparation of the implementation plan," says National Cyber Security Director Rauli Paananen.

The revised Cyber Security Strategy takes into account the requirements which the updated EU Directive on measures for a high common level of cybersecurity across the Union (NIS2 Directive) places on the national Cyber Security Strategy, and other related key strategies and reports.

What’s next?

The preparation of the strategy implementation plan has begun under the leadership of the National Cyber Security Director. The implementation plan will provide detailed development measures on the basis of the strategy's proposals. The plan is set to be completed in December 2024.

Information defence, which is referred to in the objectives of the Government Programme, will be included in the approach to strategic communications and, with regard to the defence system, in the Government Report on Defence Policy.

Inquiries:

Rauli Paananen, National Cyber Security Director, tel. +358 295 342 212, [email protected]
Mikko Soikkeli, Director of IT Management Unit, Ministry of Defence, tel. +358 295 140 157, [email protected]
Harri Martikainen, Director General, Prime Minister’s Office, tel. +358 295 160 856, [email protected]