Comprehensive support for digital service providers

Ensuring an adequate level of security for digital services is required by law. These requirements are outlined in the Act on the National Cybersecurity System, which came into force on July 5, 2018, and implements the EU Directive 2016/1148(1). This is the first comprehensive legal act that defines the tasks and obligations necessary to create a national cybersecurity system.

The service is aimed at digital service providers (DSPs) – such as e-commerce platforms, cloud processing services, and search engines. Due to the international nature of these entities, their obligations are governed by the EU regulatory framework and the Polish KSC Act, which imposes a requirement on these companies to ensure a level of security proportional to the risk to which the security of the digital services they provide is exposed.

Ustawa o krajowym o systemie cyberbezpieczeństwa obejmuje również operatorów usług kluczowych (UOK), dla których przygotowaliśmy odrębną ofertę – sprawdź: Analiza ryzyka cyberbezpieczeństwa.

The service includes checking vulnerabilities and threats that may affect the operation of the IT system, and consequently the availability of the digital service. Support includes conducting an audit, analysis, and preparation of documentation in line with the requirements of the National Cybersecurity System Act. We will verify whether your organization meets the organizational and technical obligations of a digital service provider. We will also conduct an impact analysis and risk assessment regarding the security of the service. Finally, we will prepare and update the required documentation as specified in the KSC Act. Additionally, we will train your staff, raising awareness of potential threats and providing strategies for risk management and crisis situations.

The audit and security analysis of digital services aim to ensure that your organization meets the required level of security for the networks and information systems used to deliver services, as mandated by the law. With the comprehensive support provided by PBSG, you will understand the goals and requirements placed on digital service providers and align your security measures, risk management practices, communication, and documentation with the National Cybersecurity System Act. This will ensure that your organization complies with the obligations of digital service providers under the law, while also offering secure services, which is crucial for building a competitive advantage.

The cost of the audit and analysis regarding the security of a digital service and support for the provider depends on factors such as the size of the organization and its IT systems, the nature of its operations, the market environment, and the complexity of the processes involved. Each service is individually priced, taking into account the scope of work and the preferred timeline.

Each stage has a defined duration, but the entire process can typically be completed within a few weeks. The timeline depends on the size of the organization and the specifics of the project. We adjust the work schedule to meet the individual needs of your organization.