The first version of the National Cyberspace Security Strategy
was approved in 2015, through Council of Ministers Resolution nº36/2015. This aimed to deepen the security of networks and information systems and promote a free, safe and efficient use of cyberspace by all citizens and public and private entities.
In 2019, as a result of the constant acceleration, innovation and convergence of technologies, development of cyberspace, new threats and vulnerabilities, new European regulation and needs in terms of digital skills, Portugal decided to proceed with the review and elaboration of a new National Cyberspace Security Strategy, for the period 2019-2023.
It is CNCS’ objective, with the implementation of this strategy, to make Portugal a safer and more prosperous country, through innovative, inclusive and resilient action, which preserves the fundamental values of the democratic rule of law and guarantees the regular functioning of institutions in the face of the digital evolution of society.
The National Cyberspace Security Strategy has the following strategic goals:
- To maximize resilience:
to strengthen and guarantee national digital resilience, enhancing inclusion and network collaboration, in order to safeguard the security of cyberspace of national interest in the face of threats that may compromise or disrupt networks and information systems essential to society .
- To promote innovation:
to foster and enhance the national capacity for innovation, affirming cyberspace as a domain of economic, social, cultural development and prosperity.
- To generate and ensure resources:
to contribute to obtaining and guaranteeing the allocation of adequate resources for building and sustaining national capacity for cyberspace security.
Considering the needs associated with each of the strategic goals, six intervention axes were considered, which include the actions to be carried out within the scope of the Action Plan of the National Cyberspace Security Strategy:
Axis 1 – Cyberspace security framework
Axis 2 - Prevention, education and awareness
Axis 3 - Cyberspace and infrastructure protection
Axis 4 – Responding to threats and fighting cybercrime
Axis 5 - Research, development and innovation
Axis 6 - National and international cooperation
The document that embodies the National Cyberspace Security Strategy is available here.
Within the scope of the Action Plan, the following activities are being carried out:
Preparation of the Cybersecurity Competency Standard.
Design and implementation of 17 courses.
Creation of a network of cybersecurity competence centers, which develop innovative solutions in the area for SMEs and local public structures, reformulate training to qualify people and organizations in cybersecurity. 7 competence centers are planned, being spread across the country.
Creation of a cybersecurity academy that will equip a set of new specialists from public administration and the private sector with advanced skills.
Part of the actions identified above, as well as other actions in the field of cybersecurity, are financed through the Digital Transition plan registered in the PRR, components C17 and C19.
The execution of the Action Plan of the National Cyberspace Security Strategy is available here.
The coordination of the National Cyberspace Security Strategy is the responsibility of the National Cybersecurity Center, supported by INCoDe.2030.