Strategic information in electronic environment should be better protected
|
Electronic information is not fully safe in Lithuania, because there is a lack of systematic approach of the State towards this area, found a preliminary study, which assessed security of strategic information in Lithuania. The NAO stated that there is a lack of consistent and thorough legal regulation in this area, as well as no clear division of functions and cooperation among institutions, whose task it is to ensure information security; strategic electronic information security objects are not defined, there is no management and response system to threat prevention and effects of incidents in place. Therefore in case of threat to electronic information security it would not be clear as to who by and how it should be managed. |
 |
Rasa Budbergytė, head of the NAO, said that not all the weaknesses in
strategic electronic information security detected during the previous
audits were eliminated; some major recommendations were also not
implemented. "Unprotected strategic information may impair the interests
of the State and its residents, as well as the image of the State," she
added.
The NAO found that in Lithuania there is no legislation, which would
thoroughly and consistently regulate electronic information security and
its protection measures; further development of security of electronic
communications networks and information systems is not planned. Without
these documents proper protection of strategic electronic information
and infrastructure, as well as efficient use of funds allocated to this
area may not be ensured.
The valid legislation does not stipulate which institutions form and
implement electronic information security policy; their
interrelationship is not defined, principles and ways of cooperation
between the public and private sectors are not established. Unclear
national management structure of strategic electronic information
security may impede Lithuania's effective cooperation with European
Union and NATO.
Preliminary study
Strategic
Information Security