National Information Security Strategy Renewed
The Finnish Government adopted a new national Information Security Strategy for 2009-2015 on 4 December 2008. In accordance with the Government Resolution on the Strategy a concrete action programme on information security will be outlined next spring.
The new Strategy focuses on three priorities: basic skills in the ubiquitous information society, information-related risk management and service reliability, and competitiveness and international network cooperation.
The aim of the Information Security Strategy is that people and businesses can trust that their transactions in information and communications networks and in the related services are secure. ICT service users must be able to identify and recognise the starting points for safe, secure and reliable services.
It is particularly the service provider's duty to ensure security of the services and, for its part, ensure identification and protection of confidential information. In practice, the service provider and all actors involved in providing the services ensure together that the services are secure.
If services are being outsourced and acquisitions are linked in chains, it must be ensured that a holistic approach to information security is maintained. The security of data in the entire network should be evaluated already when planning the services. Provision of secure information and communications systems and services must be ensured at all times.
In a global information network economy a significant percentage of information security threats and attacks originate outside the country where they are detected. Prevention of these threats calls for not only comprehensive measures and efficient international cooperation networks but also preventive approach and identification of even weak signals.
The previous Government Resolution on Information Security Strategy dates from 2003. One result of that internationally unique Strategy was the launch of the Information Security Day project. That was the first time information security issues were included in the political agenda.
An action programme in relation to the new Strategy will be drawn up by an information security group that works under the Ubiquitous Information Society Advisory Board. The task of the group is to promote, monitor and suggest improvements for information security in the information society. The group is also responsible for coordinating the implementation of the Strategy's measures most important to society.
Further information:
Mr Aleksi Randell, Special Adviser to the Minister of Communications,
tel. +358 400 500 822
Ms Mari Herranen, Ministerial Adviser, tel. +358 9 160 28305, +358 40 720 1693
Explanatory memorandum to the Government resolution on National information security strategy 4.12.2008