ITALY Law and Practice Contributed by: Paolo Balboni, Luca Bolognini, Francesco Capparelli and Giulia Finocchiaro, ICT Legal Consulting
Cyberthreat monitoring and detection The ACN and CSIRT Italia continuously monitor cyberthreats, vulnerabilities and attack vectors targeting critical infrastructure. The State mandates that essential service pro - viders implement advanced threat-detection systems, including intrusion detection, behav - ioural analytics and automated monitoring tools. The National Cyber Threat Intelligence Platform collects, analyses and distributes real-time cyberthreat intelligence to government agencies and private entities. Cybersecurity incident reporting and analysis Entities covered under NIS2 and the National Cybersecurity Perimeter Law must report signifi - cant cybersecurity incidents to the ACN within 24 hours. The State analyses cyber incident reports to assess risk trends, identify attack patterns and develop national defence strategies. Italy collaborates with EU cybersecurity agen - cies (ENISA, Europol and NATO cyber defence units) to exchange threat intelligence and co- ordinate international cyber response actions. National defence against cyberthreats The government strengthens national cyber defence capabilities by investing in cybersecu - rity research, innovation and workforce develop - ment. Italy enforces strict cybersecurity standards for ICT suppliers, ensuring that critical infrastructure operators use secure, vetted technologies. The Ministry of Defence and intelligence agen - cies monitor cyberthreats linked to foreign
actors, cyber-espionage and State-sponsored attacks. Conclusion Italy’s State responsibilities on resilience and threat identification ensure a structured and pro - active approach to national cybersecurity: • the government enforces cybersecurity laws, supervises compliance and ensures that critical infrastructure remains resilient against cyberthreats; • national cybersecurity agencies (the ACN and CSIRT Italia) identify, monitor and respond to cyberthreats, ensuring real-time protection of essential services; and • the State collaborates with EU and inter - national partners to strengthen cyber intel - ligence, prevent large-scale cyber incidents and secure the digital ecosystem. Through policy enforcement, risk monitoring and cyber intelligence operations, Italy upholds a robust cybersecurity framework that safeguards national security, economic stability and public trust. 3. Financial Sector Operational Resilience Regulation 3.1 Scope of Financial Sector Operational Resilience Regulation Italy’s financial sector’s operational resilience is regulated primarily under DORA, which estab - lishes a harmonised cybersecurity framework for financial entities across the EU. DORA applies directly in Italy without requiring national trans - position, ensuring uniform ICT risk management and cyber-resilience measures for financial insti - tutions.
140 CHAMBERS.COM
Powered by FlippingBook