Revised Cyber Security Strategy circulated for comments

The Ministry of Transport and Communications invites comments on the revised draft of Finland's Cyber Security Strategy. The deadline for submitting opinions is 9 August 2024.

In line with the Programme of Prime Minister Petteri Orpo's Government, Finland's Cyber Security Strategy has been revised to respond to the changed security environment. The previous Cyber Security Strategy was published in 2019. Since then the security environment in Finland and Europe has changed significantly due to the COVID-19 pandemic, Russia's full-scale invasion of Ukraine, and Finland's membership in NATO.

The objectives of the revised strategy extend to 2035. The strategy aims to make cyber security an integral part of Finland's concept for comprehensive security.

The strategy is divided into four sections:

• a competent and innovative cyber ecosystem that allows experimentation
• society's strong cyber resilience and operational reliability
• a robust model for national and international cooperation
• a secured sovereignty and timely response to threats.

Each section includes strategic objectives to provide the basis for common practical development measures.

The revised Cyber Security Strategy takes into account the requirements which the updated EU Directive on measures for a high common level of cybersecurity across the Union (NIS2 Directive) places on the national Cyber Security Strategy, and other related key strategies and reports.

On 8 March 2024, the Prime Minister's Office set up a project to develop an operating model for the management of national security at the government level. The project's sub-group drew up the revised Cyber Security Strategy under the leadership of the National Cyber Security Director. In addition to the working group, nearly one hundred parties from the public and private sectors, the scientific community and civil society organisations contributed to the drafting.

Next steps

The deadline for submitting opinions is 9 August 2024. After the consultation process, the preparations will continue by public officials as part of their regular duties.

Under the NIS2 Directive, the strategy must enter into force by 18 October 2024.

Inquiries:

Rauli Paananen, National Cyber Security Director, tel. +358 295 342 212, [email protected]
Harri Martikainen, Director General, Prime Minister’s Office, tel. +358 295 160 856, [email protected] 
Mikko Soikkeli, Director of IT Management Unit, Ministry of Defence, tel. +358 295 140 157, [email protected]