The Digital Security Authority was created as a result of the Network and Information Security Directive (NIS Directive).  Member States, including Cyprus, are obliged to boost their capabilities in the area of cybersecurity (National Competent Authority, National CSIRT, etc.), cooperate with necessary stakeholders on a national and European level, manage cyberspace risks in a structured way, and to impose incident notification requirements on relevant entities.

In the DSA Legislation, the following categories of entities are recognised:

  • Operators of Essential Services (OES)
  • Critical Information Infrastructure Operators (CIIO)
  • Electronic Communications Providers (ECP)
  • Digital Service Providers (DSP)

The DSA is developing a number of activities, aiming at full implementation of the NIS Directive.