BRAZIL Trends and Developments Contributed by: Juliana Abrusio and Mario Cosac, Machado Meyer
Machado Meyer Avenida Brigadeiro Faria Lima 3200
5th Floor Itaim Bibi 01453-050 Brazil Tel: +55 113 150 3311
Email: jabrusio@machadomeyer.com.br Web: www.machadomeyer.com.br/en
The Cybersecurity Landscape in Brazil The Brazilian cybersecurity landscape can be analysed both at the macro level and in specific sectors. This is due to the existence of regula - tions and research at the federal level, as well as specific regulations pertaining to certain sectors of the economy, which will be outlined through - out this article. The federal scenario shall be considered first, however, before moving on to other, more specific regulation. Federal landscape Approved through Decree No 10,222 on 5 Feb - ruary 2020, the National Cybersecurity Strategy ( Estratégia Nacional de Segurança Cibernética , or “E-Ciber”) outlined strategic actions for the period from 2020 to 2023, with the aim of guid - ing Brazilian society on the federal government’s main initiatives around cybersecurity – both nationally and internationally. Among the E-Cib - er’s objectives were to make Brazil more pros - perous and reliable in the digital environment, increase resilience to cybersecurity threats, and strengthen the country’s international role in cybersecurity. Following the E-Ciber, on 26 December 2023, President Luiz Inácio Lula da Silva signed Decree
No 11,856, establishing the National Cybersecu - rity Policy ( Política Nacional de Cibersegurança , or “PNCiber”). This policy aims to guide cyber - security activities in the country, establishing guidelines to protect critical infrastructures and promote cyber-resilience. In addition, the decree created the National Cybersecurity Committee ( Comitê Nacional de Cibersegurança , or CNCib - er), formed by representatives from the govern - ment, civil society, scientific institutions and the business sector. The CNCiber is responsible for monitoring the implementation and evolution of the E-Ciber, proposing updates to the PNCiber, and evaluating and suggesting measures to improve cybersecurity in Brazil, as well as for - mulating international technical co-operation strategies. The policy arises from the need for protection, given that cyber-attacks represent one of the greatest threats to entities in today’s world. In 2021, there was a major data leak in Brazil , whereby 220 million individual taxpayer regis - tration ( Cadastro de Pessoas Físicas , or CPF) and company registration ( Cadastro Nacional da Pessoa Jurídical , or CNPJ) numbers were exposed. Although the source of the leak has not been identified, 37 databases covering name,
62
CHAMBERS.COM
Powered by FlippingBook