In order to fend off increasing cyber challenges, NS is continuing its efforts to further develop a mature IT (information technology) and OT (operational technology) cybersecurity organisation. In 2021, the Information Security Management System (ISMS) was updated in response to changes in the threats facing us. In addition, we conducted company-wide risk analyses of IT and OT processes and of high-risk incidents. We also began preparing the implementation of the Networks and Information Systems (Security) Act in 2022. Implementing our cybersecurity road map has also helped us introduce the necessary measures to mitigate the risks and prepare for current threats.
In 2021, NS took part in a large-scale cyber exercise organised by the National Cyber Security Centre and the National Coordinator for Counterterrorism and Security (NCTV). This exercise involved the national government and organisations in vital infrastructure joining forces on the basis of a crisis scenario. Drills such as these make it possible to act faster and more effectively in times of a real digital crisis.