jtsec joins the new spanish National Cybersecurity Technical Committee

Blog

8
- Nov
2018
Posted by: Javier Tallón
[Cybersecurity & hacking tools and techniques]
jtsec joins the new spanish National Cybersecurity Technical Committee

Last September 28th the new standardization committee was constituted, which will form part of the structure of technical committees of UNE, the Spanish Association for Standardization: the CTN 320 "Cybersecurity and protection of personal data".

UNE is the only Standardization Body in Spain, recognized by the Ministry of Economy, Industry and Competitiveness at the European Commission, and carries out its standardization work under the figure of a multisectorial association after the splitting of its activities of standardization and conformity assessment, the latter, together with training and sale of standards in AENOR International, which has now become a trading company.

UNE is the Spanish body in the European Committee for Standardization, CEN, in the European Committee for Electrotechnical Standardization, CENELEC, in the European Telecommunications Standards Institute, ETSI, in the Pan-American Commission for Technical Standards, COPANT, as well as in the International Organization for Standardization, ISO and in the International Electrotechnical Commission, IEC.

A Technical Committee for Standardization (CTN) is a body in charge of drawing up a specific standard that is used on a voluntary basis. The NTCs are managed by UNE´s technical services and composed of a series of members who form a balanced representation of the entire value chain of the standardised product or service, which guarantees the transparency, openness and consensus of the work carried out. Each NTC will have an approved and defined scope of work under which it carries out its activity.

The new CTN 320 “Cybersecurity and personal data protection” is the evolution of the old CTN71/SC27 “Security techniques”.

Among the aspects to be worked on by this new committee will be the methods, techniques and guidelines in the field of cybersecurity, information security, communications and IT, which includes the following areas:

  • Methodology for the capture of requirements.
  • Security techniques and mechanisms, including procedures for the registration of security components.
  • Management of cybersecurity, information security, communications and IT.
  • Management of support documentation, including standards for terminology, conformity assessment and security assessment criteria.
  • The requirements and guidelines for the protection of personal data and privacy of individuals, including management aspects and privacy requirements by design and by default.

jtsec, in its commitment to standardisation as the way to a more cybersecure world, has thus joined the CTN320, together with more than forty entities that will influence the development of international standards by providing the vision of Spanish experts in the development of standards such as ISO 27001 and those that may arise in support of the new European regulatory framework such as the NIS Directive and the future Cybersecurity Act.

tags
Javier Tallón/Technical Director

Expert consultant on the Common Criteria standard, and other security assurance standards in the field of the information technology (FIPS 140-2, ITSEC, ISO 27K1, SOC 2, ENS...). Javier has served as an evaluator in the Spanish CB for the country major evaluation labs. As a consultant, he has successfully accompanied national and international companies in several certification processes (to EAL5+). His experience has led him to participate as a speaker at several conferences on computer security and certification (SuperSec, Cybercamp, Navaja Negra, International Common Criteria Conference, International Cryptographic Module Conference, EUCyberact Conference). He is also Cyber Security lecturer, giving classes of Secure Software Engineering at the University of Granada and is CISSP (Certified Information Systems Security Professional) and OSCP/OSCE (Offensive Security Certified Professional & Certified Expert) certified .

In 2015 he begins to lay the foundations of what will be jtsec. He currently works as Technical Director of the evaluation lab and Chief Operations Officer (COO) of the Granada site from where the company develops most of the work. Recognized expert in various disciplines of cybersecurity (reversing, exploiting, web, ...), assumes the technical direction of most of the projects, directing and organizing the work of the team. He also leads the Research and Development area, encouraging the participation of the jtsec team in multiple Congresses.


Contact

Send us your questions or suggestions!

By sending your data you allow us to use it to resolve your doubts by sending you commercial information of interest. We will delete it when they are no longer necessary for this matter. Know your rights in our Privacy Policy.
RECENT POSTS
jtsec achieves pioneering accreditation for MEMeC cryptologic evaluation
Jan 17, 2025
jtsec achieves pioneering accreditation for MEMeC cryptologic evaluation
jtsec & Applus+ Laboratories at ICCC24
Nov 14, 2024
jtsec & Applus+ Laboratories at ICCC24
How to use the CCN product catalog to improve your company's security
Oct 14, 2024
How to use the CCN product catalog to improve your company's security
Common Criteria Statistics 2023
June 17, 2024
Common Criteria Statistics 2023
How to enter ENS category high, stay in the catalog and add new versions of my product
April 23, 2024
How to enter ENS category high, stay in the catalog and add new versions of my product
jtsec - Our LINCE 2023
Febr 6, 2024
jtsec - Our LINCE 2023
We wish you a happy and cybersecure 2024
Dec 19, 2023
We wish you a happy and cybersecure 2024
How to Prepare Your Products and Services for the Quantum Era and Ensure Their Certification?
Dec 14, 2023
How to Prepare Your Products and Services for the Quantum Era and Ensure Their Certification?
How to include your product or service in ENS ALTA.
Oct 31, 2023
How to include your product or service in ENS ALTA.
Certifications and cybersecurity methodologies are generating interest among companies and organizations at both the national and international levels.
Sept 19, 2023
Certifications and cybersecurity methodologies are generating interest among companies and organizations at both the national and international levels.
CATEGORIES