Accessibility

Accessibility

Text size

In all popular web-pages it is possible to increase and decrease font size by holding Ctrl-key (in OS X Cmd-key) and pressing “+” or “-“-key. It is very convenient to use mouse: holding Ctrl and scrolling mouse central scroll button. It is possible to go back to normal size pressing Ctrl and 0-keys.

If you think you see this text unintentionally

It might happen, that some elements of our webpage or platform did not arrive to you as planned, they are served from some buffer (cache). To resolve it, please try to do “hard refresh”, hold down Ctrl (Control) + Shift and click R.
For more information about hard refresh in different systems and browsers, please choose some of the results of Google Search: browser hard refresh.

Still no help with actual content?

Second option will be to try to clean up the cache on your own browser. Please choose some of the appropriate results of Google Search: browser clear cache.
After that, you might refresh your query again or order new login token to be sent to your email once again.

Still no help?

Sorry for inconvenience. Please take a snapshot of your browser configuration by visiting webpage www.whatismybrowser.com and send the unique link of it to EU CyberNet Headquarters by email .

Thank you!

Search

Members-only Seminar on Cybersecurity Governance Frameworks

The 7th LAC4 members-only seminar, led by EU CyberNet Experts Gabriela Reynaga Vargas and Jurica Čular, focused on cybersecurity governance as a cornerstone for ensuring digital security, institutional resilience, and operational continuity in the face of complex and persistent cyber risks. While national governance frameworks, such as cybersecurity strategies, public policies and regulatory measures, set out broad lines of action, their effectiveness was shown to depend on strong organizational structures capable of translating principles into concrete mechanisms.

During the seminar participants engaged with a comprehensive set of topics designed to bridge the gap between policy and practice. The seminar addressed cybersecurity governance from a dual perspective: a macro view, examining national and inter-institutional frameworks, and a micro view, focusing on practical implementation within organizations, including CSIRTs.

Key themes included principles and components of cybersecurity governance, aligning organizational governance with national and regional frameworks, and adopting technical and operational best practices to establish clear roles, responsibilities, and processes.

Most important take-aways from the seminar:

  • Cybersecurity is more than just security. It is defined as the framework of rules, responsibilities, and practices for managing and directing an organization’s or a nation’s cybersecurity.
  • Macro governance is essential to protect societies from the cascading effect, that happens when single breach can cause a domino effect across sectors, threatening national security and economic stability.
  • New cybersecurity strategies are being developed across the globe such as the the NIS2 Directive, developed to establish a high and uniform level of cybersecurity across the entire EU.
  • The pillars of macro of macro governance are: national strategies, competent authorities, EU-level cooperation and a CSIRTs network.
  • It is essential to distinguish between essential entities (those belonging to highly critical sectors) and important entities (those from other critical sectors). The main distinction is that while both have obligations, Essential Entities face stricter supervisory and enforcement measures.
  • When developing a cybersecurity governance strategy, it is crucial to keep in mind three key elements: a mandatory national strategy in each member state, its nature as a living document subject to regular updates, and the inclusion of governance structures, policy measures, and objectives for research and education.
  • A solid legal foundation is essential, and a national cybersecurity law should be the first step.
  • Clear governance must be established by defining leadership roles and responsibilities.
  • A national CSIRT should be viewed as a strategic asset rather than merely a technical team.
  • Regional cooperation is vital, as partnerships strengthen collective defense.
  • Cybersecurity governance is defined as the strategic and operational framework that an organization establishes to manage risks related to information security and digital technologies. Its purpose is to protect digital assets, ensure business continuity, comply with relevant regulations and standards, and foster a strong security culture.
  • The key elements of cybersecurity governance include policies and procedures, defined roles and responsibilities, risk management, regulatory compliance, security culture, oversight and auditing, and incident response.
  • Cybersecurity governance can be achieved through standards or reference frameworks, which provide a structured and proven approach for developing policies, procedures, and controls aimed at ensuring the confidentiality, integrity, and availability of organizational information systems and data.

LAC4 remains committed to supporting its members in building and strengthening their capacity to implement effective cybersecurity governance frameworks. The 7th LAC4 members-only seminar, attended by 223 stakeholders and policymakers from LAC4 Participant Nations, was specifically designed for cybersecurity professionals and policymakers from member countries, including Antigua and Barbuda, Colombia, the Dominican Republic, Ecuador, El Salvador, Guatemala, Honduras, Panama, Uruguay, the Bahamas, and members of RedCLARA.

The seminar highlighted the importance of aligning organizational and national governance structures, fostering regional cooperation, and translating policy into practical measures to ensure digital security, institutional resilience, and operational continuity across critical sectors.

Next LAC4 members-only seminar will take place in December 2025.

Keep reading similar articles
Members-only Seminar: a Legal Architecture and a Common Framework

The seminar focused on the development of a coherent legal architecture and a common cybersecurity framework in Latin America, beginning with an introduction to the NIS 2 Directive adopted by the European Union in 2022 and the cybersecurity situation in Czech Republic. The session highlighted that, although many countries in the region are aligning with international standards, adapting these frameworks to local institutional, technical and economic realities remains a significant challenge.

LAC4 is Supporting the Bahamas’ Cyber Resilience with National Cybersecurity Risk Assessment

LAC4 in cooperation with EU CyberNet is supporting the government of the Bahamas with its national cybersecurity risk assessment. Conducted with the capacity of EU CyberNet Expert Pool, the assessment supports implementation of the Bahamas’ national cybersecurity strategy in establishing a robust national cybersecurity posture.
At HackConRD 2026: Artificial Intelligence in Cybersecurity

EU CyberNet Expert Carlos Polop delivered a session on using artificial intelligence in cybersecurity and pentesting at HackConRD 2026 conference on 28 March 2026 in Santo Domingo, the Dominican Republic.

Save the Date: CyberWeek@LAC4 2026 Takes Place November 17-20

The 5th CyberWeek@LAC4 and 0ct0b3rf35t will take place in Santo Domino, the Dominican Republic from 17 to 20 November 2026.
Following Up the In-person Workshop for SME-s Held in March 2025 in Guatemala

LAC4 organised an online follow-up training on 26 March 2026 to SME-s that participated in in-person workshop in March 2025 in Guatemala. Training focused on evaluating participant’s cyber resilience one year after the training and offer additional knowledge for strengthening cyber resilience.

Her CyberTracks Programme Launched to Empower Women in Cybersecurity

The 4th edition of the CyberTracks programme, co-organised by LAC4 and partners is open for applications to bring together more women in cybersecurity across globe for an intensive training journey to equip them with skills and knowledge for success in cybersecurity. Deadline to apply is 19 April 2026.

This site is managed and run by the Estonian Information System Authority

EU CyberNet® 2020-2026

Privacy Policy Contact