ZIUR analyzes key cybersecurity regulations and certifications with companies in Azpeitia
The Industrial Cybersecurity Center has shared regulatory obligations in this area with around ten companies from Urola Erdia
The ZIUR Fundation, in collaboration with the Iraurgi Berritzen Development Agency, brought together IT managers from companies in Urola Erdia in Azpeitia for a session focused on legal obligations and certifications in cybersecurity, combining a regulatory perspective with real experiences from the local industrial fabric.
Under the title “Cybersecurity Regulations and Certifications: Which Ones and How to Apply Them”, the session was aimed at professionals responsible for IT departments in industrial companies in the area. The training was delivered by Iñaki Torrecilla, ICS Security Architect at ZIUR, and Markel Gómez, cybersecurity technician at the foundation.
During the session, the Industrial Cybersecurity Center of Gipuzkoa presented the main legal obligations in cybersecurity, as well as the differences between regulations such as the Cyber Resilience Act and the NIS2 Directive, and the most relevant certifications, including ISO 27001 and the Spanish National Security Framework (ENS). In addition, ZIUR experts introduced the Acceleration Program, launched to help local companies comply with European cybersecurity regulations for connected industrial products.
Subsequently, the foundation created a dialogue space to share practical experiences among companies in the region. Several industrial organizations explained the steps they followed in their certification processes. Specifically, participants included Juan María Calleja, from Biele Group; Ekaitz Lizundia, from BESA – Bernardo Ecenarro; and Itziar Izagirre Olariaga and José Antonio Sudupe Unanue, from Elkarmedia. The session also included representatives from companies such as Ibarmia, Erlo Group, Sarralle, Elmubas Petfoodgroup, Berritek, Ukabi Group, and Irurena Group, among others.
Participants were able to gain a detailed understanding of their companies’ legal obligations in cybersecurity, the differences between various regulations and certifications, and real-world implementation experiences. Through these types of sessions, ZIUR aims not only to raise awareness about technological trends and regulatory requirements in cybersecurity, but also to foster the exchange of knowledge, projects, and best practices already being developed within the local industrial ecosystem.