ZIUR and the Goierri Valley HUB 4.0 help companies adapt to new cybersecurity regulations
They held a practical workshop on the obligations of European laws applicable to the industrial sector and the IoT, automotive, and medical device fields
ZIUR, in collaboration with Goierri Valley, the Goierri business association, conducted an awareness session on European cybersecurity regulations, aiming to address potential technical and legal questions from participating companies. The practical workshop, held at the Goieki Hub in Ordizia on the 18th, was attended by a dozen professionals from various organizations, including AMPO, UVL, Geolan Ingurumen Aholkularitza, and LORTEK.
Connected OT (Operational Technology) devices, Internet of Things (IoT) devices, and connected medical devices (IoMT) are targets for cybercriminals. Therefore, new European regulations such as NIS2 and the Cyber Resilience Act (CRA) will imminently impose obligations on companies, manufacturers, and developers of digital and connected products to improve cybersecurity in the European Union.
In this session with Goierri Valley, Iñaki Torrecilla, ICS security architect at ZIUR, and Markel Gómez, cybersecurity analyst at the Foundation, discussed the challenges and opportunities presented by these regulations. Specifically, they emphasized NIS2, the CRA (which affects the industrial IoT sector), UNECE R-155 and R-156 (which apply to the automotive industry), and the MDR for medical devices.
In this regard, the ZIUR experts shared the specifics of each standard, as well as a list of the affected sectors, and the obligations and steps to follow for their correct implementation. They also clarified the expected deadlines for adapting to this new legislative landscape and the consequences of non-compliance, and offered recommendations to avoid hefty fines. "The main concern has been to understand how the main regulations presented would affect them and, above all, how and when to begin the long road that must be traveled to adapt to compliance," Iñaki Torrecilla pointed out.
This session held with Goierri Valley is the result of an agreement signed between ZIUR and the association, which aims to help small and medium-sized enterprises keep their data secure through workshops, pilot projects, and other training sessions.