PPHS’ Cybersecurity Standard
The Cybersecurity Standard for SMEs and Public Institutions was developed by the Polish Platform for Homeland Security with the goal of preparing organizations for Internet-related threats.
1. Why was the Standard established?
Because of the increasing scale of Internet attacks, both SMEs and public institutions are exposed to a plethora of new types of threats that they must combat expertly. Furthermore, with the implementation of the European Union’s General Data Protection Regulation (GDPR), all businesses and institutions are required to properly protect data that is mostly processed electronically. As a result, solutions that would assist in achieving an appropriate level of security are still being sought.
The Polish Platform for Homeland Security examined available standards and concluded that there is no standard dedicated to SMEs and public information. The most well-known ISO 27001 Standard – Information security management – is intended for large organisations with specialised security teams. In fact, smaller organisations lack the tools necessary to combat cyber threats effectively.
As a result, we decided to change the current situation and create our own Cybersecurity Standard. PPHS used experience gained both during the implementation of international standards (ISO 27001, ISO 37001) and the development of new ones to accomplish this (PPHS is a member of working groups associated with the Polish Committee for Standardisation and also cooperates with the European Committee for Standardisation). The goal from the start has been to provide a standard that is useful, easy to use, and does not take too much time.
2. Benefits of implementing the Standard
- Increasing employee awareness in the cybersecurity area
- Preparing both management and employees for cyber threats
- Diagnosing key elements that are most important to the organisation and may be the target of a cyberattack
- Better protection of personal data
- Well-suited technical solutions for cyberattack protection
- Compliance with ISO 27001, which facilitates future implementation
3. How I can implement the Standard?
Establish the details of the Standard implementation
Standard implementation in your company or institution
4. Additional information
The Cybersecurity Standard was developed by the Polish Platform for Homeland Security under the innovative project titled “Cybersecurity – PPHS Standard for SME and public institutions”, as a part of submeasure 2.3.2. Innovation vouchers for SME of the Operational Programme Smart Growth 2014-2020, financed by the European Regional Development Fund. The project was performed by the Krakow Centre of Innovative Technologies INNOAGH Sp. z o.o.
Performance dates: 2 February 2019 – 31 July 2019
Total cost of the project: PLN 116,358.00, with financing from the European Regional Development Fund equal to PLN 97,239.79.
More details about the PPHS’ Cybersecurity Standard can be found on its website: standard-cyber.ppbw.pl/en