The National Cybersecurity Strategy 2022-2028 was adopted by the Government of the Netherlands in October 2022. The aim is to achieve a digitally secure Netherlands to capitalise safely on the economic and social opportunities presented by digitalisation and, at the same time, to safeguard the security and public values.
The Netherlands Cybersecurity Strategy 2022-2028 contains the following priorities:
- Understanding the threat.
- More cybersecurity specialists.
- Government and sectors taking responsibility.
- Better supervision and the necessary legislation.
- Clear information via a national cyber authority.
The objectives of the Strategy are formulated based on four pillars:
Pillar I: Cyber resilience of the government, businesses and civil society organisations.
This pillar concerns the cyber resilience of the government, businesses and civil society organisations, focusing on reducing risks to an acceptable level using a collection of measures to prevent cyber incidents and, if cyber incidents do occur, the ability to minimise damage and facilitate recovery.
Pillar II: Safe and innovative digital products and services
This pillar focuses on the suppliers and consumers of digital products and services, and on boosting cybersecurity knowledge development and innovation. Working towards a secure and innovative digital economy contributes to the digital security and earning capacity of the Netherlands.
Pillar III: Countering cyber threats posed by states and criminals
This pillar focuses on the national and international approach to combating malicious actors that pose a threat, and on gaining a clearer picture of the cyber threat landscape, thus providing a basis for appropriate action. The government has a particular responsibility here and has a range of instruments with which to address the cyber threat.
Pillar IV: Cybersecurity labour market, education and public cyber resilience
This pillar focuses on the human being behind the technology and the cyber resilience of the public. Society as a whole has an important role to play in terms of developing digital skills, from basic knowledge and skills to high-level expertise and specialist cybersecurity skills.
The aim of this is to increase society digital skills and competences in basic cybersecurity measures, such as the use of strong passwords, multi-factor authentication, making backups, installing updates and responding appropriately to phishing attacks.
Objectives related to the development of digital skills:
- The public is aware of cyber risks, threats and measures, and know where they can obtain help.
- People apply basic cybersecurity measures when they use digital products and services.
- People can get easy access, in a range of settings, to cybersecurity information and advice appropriate to their knowledge and skill level.
- Digital skills with an emphasis on security are part of the national curriculum in primary and secondary education.
- Teachers in primary and secondary education are capable (with support) of providing effective instruction in digital skills with an emphasis on security.
- There is a clear overview of shortfalls on the cybersecurity labour market and the options for addressing them.
- There are more secondary vocational, higher professional and university education places in cybersecurity that are properly aligned with the labour market, partly through the involvement of companies and knowledge institutions.
- Organisations offer upskilling and reskilling programmes for cybersecurity expertise.
Source: European Digital Skills & Jobs Platform