New cybersecurity requirements introduced in Azerbaijan

In Azerbaijan, new obligations in the field of cybersecurity are being defined for owners of information internet resources.

As Report informs, the relevant amendments to the law "On information, informatization and protection of information" were discussed at today's meeting of the parliamentary Committee on Human Rights.

The draft was prepared with the aim of improving legal regulation in the field of information security and cybersecurity, protecting information infrastructure from cyber threats, creating institutional mechanisms of cybersecurity and determining the legal basis of digital development processes.

According to the document, new concepts are being introduced into the law, such as information infrastructure, information infrastructure entity, cybersecurity, cyberspace, cyber hygiene, digital evidence, digital investigations, computer incident response center (CERT - Computer Emergency Response Team), security operations center (SOC - Security Operations Center), national CERT, state CERT and other concepts.

The draft law defines the rights and obligations of state bodies, information infrastructure entities, CERT and SOC in the field of cybersecurity, establishes mechanisms for detecting, preventing, investigating and eliminating cyber threats, cyber attacks and cyber incidents.

New obligations in the field of cybersecurity are also being established for information infrastructure entities, internet providers, hosting providers and owners of information internet resources, and the directions and powers of the National CERT are being expanded.

It is expected that the adoption of the draft law will contribute to improving the system of information security and cybersecurity in the country, increasing the effectiveness of the fight against cyber threats, strengthening the resilience of information infrastructure and more effective organization of digital development processes.