Critical Infrastructure Protection Department

On 19November 2024, Legal Notice 306 of 2024, titled the Critical Infrastructures and European Critical Infrastructures (Identification, Designation, and Protection) (Amendment) Order, 2024 was published within the Government Gazette.

The key introduced amendments are as follows:

I. Introduction of the "Department"

A new definition for "Department" has been added under Article 2 to define the Critical Infrastructure Protection Department. This addition marks a shift in governance and operational structure as the previous "Unit" designation has been removed.

II. Creation of the Critical Infrastructure Protection Department

Article 3 formally establishes the Critical Infrastructure Protection Department (“CIPD”) as a department at law, assigning it specific functions as outlined by law.

These amendments represent a significant step toward aligning Malta's legislation with the principles deriving from the NIS2 Directive and the Critical Entities Directive. By introducing these changes, Malta is not only enhancing its capacity to protect critical infrastructures but also reinforcing its commitment to EU-wide efforts to strengthen its posture against cyberattacks. In addition, this marks an important milestone in Malta's journey towards eventual transposition of these Directives into national law.

---

News Update by: J.J. Galea

For more information regarding the NIS2, the Critical Entities Directive and their potential effects on your enterprise, contact us at info@gtg.com.mt

 

You might also be interested in reading:

Malta’s NIS2 Transposition issued for Public Consultation

Security and resilience for European backbone submarine cable infrastructure (NIS2 & CER Directives)

Disclaimer This article is not intended to impart legal advice and readers are asked to seek verification of statements made before acting on them.
Skip to content