The Department of Information and Communications Technology (DICT) invites all stakeholders, advocates, and concerned individuals to submit feedback, comments, and suggestions on the drafted National Cybersecurity Plan (NCSP) 2023-2028 to provide a safe and reliable cyberspace for all Filipinos.
The goal of the public consultation on the draught of the NCSP 2023-2028 is to improve the final document, which is expected to be released by the end of 2023. All parties interested may offer their suggestions and comments to the Office of the Assistant Secretary for Cybersecurity and Upskilling via email at oascu@dict.gov.ph. The outline NCSP 2023-2028 is organised around six (6) pillars, including:
- Enactment of the “Cybersecurity Act” to strengthen the policy framework;
- Secure and protect Critical Information Infrastructures (CII);
- Proactively defend the government and people in cyberspace;
- Operational and well-coordinated network of Computer Emergency Response Team (CERT) and SOC;
- Capacitate workforce in cybersecurity; and
- Enhancing international cooperation.
Ivan John E. Uy, secretary of the DICT, emphasised the importance of concerted action from all interested parties to create a trusted, dependable, and safe online environment for Filipinos.
“The NCSP 2023-2028 shows the importance of convergence among all government agencies in delivering our mission. It outlines steps on how each government agency can coordinate all their cybersecurity initiatives through the National Cybersecurity Inter-Agency Committee (NCIAC). It also harmonises all organisation CERT and defined two national-level CERTs,” said Secretary Ivan.
He also stated that there was a steady increase in internet-based transactions during and after the COVID-19 outbreak. The country gradually evolved to cashless transactions as electronic commerce and e-banking became commonplace, mostly because of inventions from the private sector. Cybercrime incidences rose as these advanced.
Cyberthreat actors took use of flaws and vulnerabilities in processes, technology, and human behaviour. In response to these changes, the National Cybersecurity Plan 2023–2028 (NCSP 2023–2028) was created.
The goal of DICT is to give every Filipino access to a trusted, secure, and reliable online environment. This demonstrates the necessity of protecting the government and the public online, as well as the significance of fostering the kind of trust required for online commerce to flourish.
The NCSP’s second iteration drew on the preceding strategy’s results while also demonstrating a policy shift. DICT is now attempting to establish a Cybersecurity Act to balance the economic linkages impacting noncompliance with cybersecurity legislation.
The new strategy also promotes policy based on standards and risk-based methods. Individual organisations, rather than entire sectors, are designated as CIIs if they fail, depending on their size and influence. A renewed emphasis on developing the cyber workforce, as well as the significance of improving international collaboration in cybersecurity, was also emphasised.
Most particularly, the NCSP 2023-2028 demonstrates the importance of collaboration among all government departments in carrying out its mandate. It details how each government agency can use the National Cybersecurity Inter-Agency Committee (NCIAC) to coordinate all their cybersecurity initiatives. It also unifies all organisation CERTs and establishes two national-level CERTs.
Though the NCSP 2023-2028 has a sublime goal, DICT thinks this strategy can be successful with the assistance of all government agencies, the private sector, and all departments of government.
The National Cybersecurity Plan must be developed by DICT in accordance with RA 10844, hence, the National Cybersecurity Plan 2028 (NCSP 2028) draft is meant to serve as a guide for consultations, with the goal of using comments to improve the final version of the NCSP, which is scheduled to be released before the end of 2023.