43ba9ae8c874d5b8c7e7c9a7f9782c35c5dfede8.pdf

Page 1 of 32

National Cyber Security Strategy for Norway | 1

Strategy

National Cyber Security

Strategy for Norway

Norwegian Ministeries

Page 2 of 32

Page 3 of 32

Foreword

Norway is one of the leading digital nations in the world. As politicians, we have a responsibility

to ensure that we make the most of the resources invested in our society. We are encouraging

both the public and the private sector to participate in digital innovation, to improve efficiency,

increase competitiveness and create new jobs.

The digitalisation of Norwegian society also represents a challenge. Digital infrastructure and

systems are becoming increasingly complex, comprehensive and integrated. Dependencies

and vulnerabilities are progressively emerging across areas of responsibility, sectors and

nations, and it is generally expected that digital services should be accessible anywhere and

all times. Successful digitalisation also includes making sure that the solutions provided

appropriately accommodate demands for the security and privacy of the individual, and that

everyone can be confident that the digital services will function as they should.

The first national Norwegian cyber security strategy was introduced in 2003, making Norway

one of the first countries in the world to have a national strategy in this particular area. In step

with developments in the threat landscape, the national strategy was revised in 2007 and 2012.

The Committee on Digital Vulnerabilities in Society published its report on digital vulnerability

in Norwegian society in 2015. As a part of the follow-up on the report, the first white paper to

the Norwegian Parliament that focused exclusively on cyber security was prepared in 2017.

The paper was entitled “Cyber security – a joint responsibility” – and with good reason, given that

we all share an interest in, and a responsibility for, securing our digital assets. What was once a

topic of interest to a select few has now become an issue that affects each and every one of us.

The present strategy is Norway’s fourth cyber security strategy, and is intended to address

the challenges that will inevitably arise in conjunction with the rapid and far-reaching

digitalisation of Norwegian society. The developments in relation to previous national

strategies are based on the need to reinforce public-private, civilian-military and international

cooperations. The primary target groups for the strategy are authorities and companies

in both public and private sectors, including the municipalities. Moreover, the strategy is

to lay the foundations for ensuring private individuals have the necessary knowledge and

understanding of risks in order to use technology in a safe and secure manner.

In preparing the strategy, we placed particular emphasis on applying an open and inclusive

process so as to involve stakeholders from the public and private sector alike. A strategy

conference involving more than 300 delegates, written input and high participation in a range

of workshops clearly indicates there is great interest in identifying shared solutions. I extend

my gratitude to everyone who has made a contribution during the strategy process.

The time has now come to make a start on the most important work – the follow-up. I hope

that you will take ownership of the new national cyber security strategy, put it on the agenda

and help ensure its implementation. By responding to cyber security challenges appropriately,

we can make the very most of the digitalisation of society and benefit from new opportunities

for us as individuals, as companies and as a society.

Erna Solberg

Prime Minister