René Baran
He is currently the Director of the International Relations and Security Policy Division, Regulation and Oversight Section of the National Security Bureau, where he is responsible for the development of law and security policy in the National Security Bureau environment. These activities include the approximation of European Union law into national legislation, inter alia, in particular in the field of cyber security, protection of classified information and trust services. It actively participates in the development of legislation, framework documents, strategies, security policies, national positions and opinions not only in the area defined by the competence of the National Security Office. At the same time, it represents the Slovak Republic at expert level in the working formats of the Commission and the Council of the EU, such as the Cooperation Group (Cooperation Group established on the basis of the NIS Directive), HWP CI (Horizontal Working Group on Cyber), WG NCSS (Working Groups for Cyber Security Strategy), as well as others. In 2015-2017, when the first ever Slovak Presidency of the Council of the EU took place (second half of 2016), he chaired a number of working groups and formats also directly in Brussels, where at that time he worked as a diplomat at the Permanent Representation of the Slovak Republic to the EU. He also had the opportunity to participate in negotiations in the process of drafting Union legal acts, such as the GDPR and the MHR Directive at the level of the EU Council, as well as in trilogues between the EU Council, the Commission and the European Parliament.
Sign in to Autumn ITAPA 2024
-
Discussion "NIS 2 and cyber security strategy in Slovakia"
-
DISCUSSION "Impact of European regulations on Slovakia
The European Commission has significantly increased its legislative activity in recent years. Almost a decade has passed since the introduction of the first horizontal cybersecurity legislation, the NIS Directive. Its aim was to achieve a high level of cybersecurity across the EU, and it has succeeded. Even the NIS standard has been successfully exported by the EU to third countries, as with the GDPR. The recent period has been quite rich in a number of important writings. For example, the finalisation of the updated Network and Information Security Directive (NIS2), the implementation of the Cybersecurity Act (CSA) through ENISA's work on cyber certification schemes, or the launch of the European Centre of Competence (ECCC) based in Bucharest. Last but not least, the proposal for a Cyber Resilience Act (CRA) focused on the security of IoT systems, including the regulation of SW and HW products, which is currently being debated in the EU Council. Mention should also be made of the brand new April cybersecurity package, in which the European Commission presented a proposal for a Cyber Solidarity Act aimed at building a resilient EU cybersecurity shield and providing rapid assistance to a country in need, as well as a proposal for a revision of the CSA to introduce schemes for managed security services. In addition to the files mentioned, there are others, particularly in sectoral areas.
Panelists will discuss whether our current legislative framework remains adequate to effectively respond to cybersecurity incidents, threats and trends? Are we "resting on our laurels"? The main debate should highlight where we actually are with the level of cybersecurity and related digital legislation with cybersecurity elements. Is the EU capable of protecting critical infrastructure elements of the state and industry? Are the current competences of the European institutions, bodies and agencies sufficient to act quickly, efficiently and transparently? Where are the current problems?