The final text of the draft amendment to the National Cybersecurity strategy Act, taking into account the amendments agreed at the gathering of the government, was published by the Government Legislative Centre.
According to the information provided by the Ministry of Digital Affairs, the rules on financing fresh obligations imposed on central units by the amended Act have been amended. At the same time, the 10-year expenditure plan related to the implementation of the Act was reduced from PLN 4 billion to PLN 3 billion.
Specialists will have no motivation to decision from the private sector
Stormshield and Dagma IT safety experts measure this as a disturbing signal, in the context of the scale of the threats we gotta face, due to the fact that "the specialists we request to effectively defy the vast majority of attacks against Poland will not have the motivation to decision from the private sector". They besides stress that the state creates an umbrella over the full economy and society, being the first line of defence against threats.
The findings resulting from the multi-month work have been amended
"My biggest surprise is the fact that the findings of specialists who have worked on the scale of the financial impact of the KSC on the state budget over the 10-year period in fresh months have abruptly been so substantially corrected," says Piotr Zielaskiewicz, Stormshield solutions manager at Dagma safety IT.
“With mention to individual items, I welcome leaving the expenditure planned for NASK-PIB unchanged, but the scale of the simplification of resources allocated to cybersecurity or the functioning of CSIRTs is simply a worrying signal,” he adds.
Is spending cuts related to the recovery of expenses for these purposes?
Experts hope that the cuts are not a consequence of a change in the approach to safety and are linked to the recovery of spending on these objectives, in the context of external sources of backing available, e.g. EU funds. Paweł Śmigielski, manager of Stormshield in Poland, draws attention to the importance of these decisions in the context of national security.
– Preserving that I do not know the circumstances of the decision is simply a crucial simplification in planned expenditure on areas as crucial as the state's digital security, due to the fact that that is what the bill is about is not good news. In particular, I draw attention to the simplification of the amount of resources for employees supervising the public administration sector, the electronic communication section and the functioning of the CSIRTs," says Paweł Śmigielski.
Lower wage expenditure will discourage professionals
In his opinion, this step may make the best specialists we request to effectively defy the vast majority of attacks against Poland will not have the motivation to decision from the private sector, which pays much better.
– Thus, the possible associated with their competence will not necessarily be optimally exploited, judging this from the position of a state whose organs are like an umbrella spread over the full economy and society, being the first line of defence against threats", says Stormshield.
It is crucial that the final form of the rules has yet emerged
– The provisions of the Act will besides cover thousands of private entities whose budget changes will not apply. For them, it is crucial that the final form of the rules has yet emerged. Although changes at the phase of parliamentary work can be expected, we are 1 step closer to the goal of adopting this crucial law and setting clear rules according to which they are to co-create the safety of the full system," concludes Stormshield.
