Vice Minister of Communications provides an overview of cybersecurity in Cuba
Ernesto Rodríguez Hernández, Vice Minister of Communications, offered this Thursday an overview of cybersecurity in Cuba, during his keynote speech during the 19th Informática 2024 Convention, which is being held until March 22 at the Havana Conventions Center.
The expert announced that for this year, among the forecasts of the entity he represents, there is a sophistication of threats in cyberspace, through the use of Artificial Intelligence (AI), Zero Day attacks on applications and computer systems, as well as modern headsets, just to mention a few cases.
Given such alerts Cuba gives high priority to the issue as a responsibility of the State, he reaffirmed through the dissertation “Cybersecurity, a challenge of our times”, in which he showed that since the approval of the computerization policy, in 2017, and which is now ratified in the process of digital transformation, it advances to the same extent that they are able to create security and it is not only a national security issue, it goes beyond that, commented the vice minister.
Cuba has a Decree on the security and defense of cyberspace, a Decree Law for the legal framework of telecommunications and the radioelectric spectrum, vital within the cybersecurity ecosystem, a methodology for the management of information security, among other legal documents, and a Law on the protection of personal data which, as part of its regulatory compendium, has resolutions that guarantee or regulate the security of digital databases.
The Vice-Minister warned about the need to be clear that cybersecurity or cyberspace security is not a matter that is achieved in a total way, it is subject to the dynamics of any ecosystem that is supported by technologies and also evolves over time and is subject, unquestionably, to the favorable shocks to which they are exposed by technological development and human talent. Regarding cyber-attacks on companies and all systems in general, he insisted that they are due to the lack of skills and weak communication to alert on how to face these phenomena.
To ensure the cybersecurity of an infrastructure, it is not enough to have technological tools that help mitigate risks or to make them more resilient; organizational culture and risk perception are essential.