All of the data that’s managed by public administration entities is highly sensitive. As a result, Spain’s National Cryptology Centre (known as the CCN in Spanish) has set up the National Security Scheme (ENS) to strengthen it to protect products against all new types of cyber threats.
Although all cybersecurity matters are moving at what seems to be light speed, regulation is still lagging. In fact, in Spain cybersecurity regulation hasn’t been updated since its foundation in 2010.
Both public and private companies that provide services to public administration entities must be certified according to the National Security Scheme. This scheme isn’t just a mandatory requierement for Spain, but serves as an international benchmark and a means for all organizations to improve their cybersecurity processes.
As a third-party entity accredited by ENAC (Spain’s official National Accreditation Body), Applus+ Certification can help companies obtain this type of accreditation. Our team of auditors has already completed a special training provided by the CCN, as a means to expand our technical knowledge and learn about the new developments brought about by its evolution. Applus+ Certification now has the full scope to help our clients meet the requirements specified in the ENS scheme
The National Security Scheme has modified the security measures, including replacements, simplifications, and for some standards, stricter requirements. The following infographic summarizes the new main features included in the ENS update.