1.  
2. Events 

---

Information session for Digital Service Providers

at 1.8 KM
FEDIL Follow

• Cybersecurity
• Conformity
• Legal
• Data
• IT

FEDIL, in collaboration with Finance & Technology Luxembourg and Cloud Community Europe Luxembourg, is pleased to invite you to an information session for Digital Service Providers within the meaning of the law of May 28, 2019 transposing the 2016 directive / 1148 “Network and Information Security” (NIS), which will be held on Monday, February 3, 2020 in the premises of FEDIL.

The NIS Directive aims to ensure a high common level of security of networks and information systems in the European Union.

For this, the law defines 3 types of Digital Service Providers that fall within its scope: online marketplace, online search engine, cloud computing service, regulated by the designated competent authorities, namely the Commission Financial Sector Supervisory Authority (CSSF) for the financial sector and the Luxembourg Regulatory Institute (ILR) for the other sectors referred to in the appendix to the law.

The law recommends on the part of Digital Service Providers the identification and management of risks (Art. 11. (1)) and the taking of measures necessary to ensure the security of networks and information systems (Art. 11 . (2)) in accordance with Implementing Regulation (EU) 2018/151 on: system and installation security - incident management - business continuity management - monitoring, audit and control - compliance with international standards - documentation.

During this session, the ILR and the CSSF will present the respective approaches applied to explain the origin of the requirements in terms of security elements, in particular through the implementing regulation (EU) 2018/151. The case of subcontracting for an Essential Service Operator will also be discussed.