How to ensure compliance with all EU regulations in regards to Cyber security and correctly risk assess the liabilities.

ENISA has set a unified section of Cyber security goals that cover GDPR, NIS, PDS2 and coming EU regulations. I will present what the goals are and how the affect infrastructure such as OpenStack. Additionally we will look at the liabilities that come from the regulations and what are the risks.

ENISA is the EU authority the handles Cyber security related topics. The technical and organisational demands from all EU regulations such as GDPR, NIS, PDS2, ePrivacy etc. has all been gathered under a set of Cyber security goals that organisations much achieve in order to be compliant. The good thing is that if you follow all the golas set by ENISA you are compliant in regards to Cyber security with all the directives as well.

This talk will go through the goals and what they mean for an infrastructure such as an OpenStack cloud.

We will also look at the liabilities if you are non compliant with the Cyber security goals. What are the actual risks and how probable are they.