The EU believes strict regulation is the path to online security, and accountants are already lining up to seize the advice work
As action heroes go, the sombre-suited members of the European Commission and their hordes of faceless Eurocrats aren’t a patch on a pumped, bloodied Bruce Willis in his sweat-soaked vest.
But the commission’s president, plucky Portuguese José Barroso, and his band of 28 fellow commissioners have cast themselves in the roles of cyber policemen to rival the follicly challenged American and his bid to save humanity in Die Hard 4.0.
Film buffs will know that Willis has to do battle with a mastermind cyber criminal who first wants to hack into the US national security systems before doing all sorts of nasty things and then, of course, taking over the world. Winning the day involves two hours of shouting, gunfire, explosions and cheeky dialogue.
Typically, the European Commission’s version is somewhat more prosaic. It involves a directive – the draft Network and Information Security Directive, to be precise.
But from where they sit in Brussels, that 48 pages of prospective legislation is no less important or indeed less impressive than detective John McClane seeing off the hacker’s henchmen by launching a police cruiser at a looming helicopter. It’s just a matter of perspective and, Europe being Europe, taste.
Also, Europe being Europe, the directive is not exactly straightforward. Confusion reigns over what it will look like in final draft, which business sectors will be affected, whether it is necessary or is just another example of Brussels legislating simply because it can and, indeed, whether it will ever come to pass in light of the forthcoming European Parliament elections.
What is relatively certain is that cyber security is an area that ultimately will be legislated for in Europe. And some suggest the global accountancy practices are already aiming to steal a march on law firms to advise multinational corporations on how to cope.
Should the legal profession battle the accountants for market share in advising on the directive?
As one lawyer comments: “We don’t go through a single day without there being a headline about cyber security, so clearly something needs to happen.”
That suggests the directive, whether in present or subsequent form, represents an opportunity. But first, lawyers must get a grip on what the draft legislation will cover. And doing so requires patience.
Read more: European cybercop | Analysis | The Lawyer