Legislation

Legislation in force concerning the activities of the National Cyber Defense Institute of the National Security Service: 

  • Government Decision No. 1139/2013 (21 March) on the National Cyber Security Strategy of Hungary
  • Government Decision 1838/2018 (XII.28.) on the Strategy for the security of network and information systems in Hungary
  • Act CVIII of 2001 on certain issues of electronic commerce services and information society services
  • Act CLXVI of 2012 on the identification, designation and protection of critical systems and facilities
  • Act L of 2013 on the information security of state and municipal bodies
  • Government Decree 186/2015. (VII. 13.) on the responsibilities of the centralized IT and electronic communications service provider related to information security
  • Government Decree 187/2015 (VII.13.) on the functions and powers of the authorities responsible for electronic information security and the information security supervisor, as well as the determination of closed electronic information systems
  • Government Decree 484/2013. (XII.17.) on the rules, tasks and competences related to the establishment and operation of the National Cyber Security Coordination Council and the Cyber Security Forum and cyber security sector working groups
  • Government Decree 270/2018. (XII.20.) on the supervision of the electronic information security of information society services and the rules of procedure for security incidents
  • Government Decree 271/2018 (XII.20.) on the functions and powers of incident response centres, and the rules for security incident response and technical investigation, and for conducting vulnerability testing
  • Government Decree 214/2020. (V. 18.) on the electronic information security Early Warning System

 

Legislation affected by the implementation of the NIS Directive

Government Decision 1838/2018 (XII.28.) on the Strategy for the security of network and information systems in Hungary
https://nki.gov.hu/wp-content/uploads/2020/11/Strategy-for-the-security-of-network-and-information-systems-in-Hungary.pdf

Act CLXVI of 2012 on the identification, designation and protection of critical systems and facilities
https://nki.gov.hu/wp-content/uploads/2020/11/CIP-Act_2012_166-1.pdf

Act L of 2013 on the information security of state and municipal bodies
https://nki.gov.hu/wp-content/uploads/2020/11/Cyber-Security-Act_2013_50.pdf

Government Decree 65/2013 (III.8.) on the implementation of Act CLXVI of 2012 on the identification, designation and protection of critical systems and facilities
https://nki.gov.hu/wp-content/uploads/2020/11/Gov.Dec_.-65_2013-on-CIP-Act-1.pdf

Government Decree 541/2013 (XII.30.) on the identification, designation and protection of critical water management infrastructures and hydraulic establishments
https://nki.gov.hu/wp-content/uploads/2020/11/Gov.Dec_.-541_2013-on-water-supply-1.pdf

Government Decree 246/2015 (IX.8.) on the identification, designation and protection of critical systems and facilities in healthcare
https://nki.gov.hu/wp-content/uploads/2020/11/Gov.Dec_.-246_2015-on-health.pdf

Government Decree 330/2015 (XI.10.) on the identification, designation and protection of the critical infrastructures of the financial sector
https://nki.gov.hu/wp-content/uploads/2020/11/Gov.Dec_.-330_2015-on-finance.pdf

Government Decree 249/2017 (IX.5.) on the identification, designation and protection of critical systems and facilities of the information and communication technologies sector
https://nki.gov.hu/wp-content/uploads/2020/11/Gov.Dec_.-249_2017-on-ICT.pdf

Government Decree 161/2019 (VII.4.) on the identification, designation and protection of transportation critical systems and facilities
https://nki.gov.hu/wp-content/uploads/2020/11/Gov.Dec_.-161_2019-on-transport-1.pdf

Government Decree 374/2020 (VII.30.) on the identification, designation and protection of critical systems and facilities in energy
https://nki.gov.hu/wp-content/uploads/2020/11/Gov.Dec_.-374_2020-on-energy.pdf

Government Decree 187/2015 (VII.13.) on the functions and powers of the authorities responsible for electronic information security and the information security supervisor, as well as the determination of closed electronic information systems
https://nki.gov.hu/wp-content/uploads/2020/11/Gov.Dec_.-187_2015-on-competent-authorities.pdf

Government Decree 270/2018. (XII.20.) on the supervision of the electronic information security of information society services and the rules of procedure for security incidents
https://nki.gov.hu/wp-content/uploads/2020/11/Gov.Dec_.-270_2018-on-DSP.pdf

Government Decree 271/2018 (XII.20.) on the functions and powers of incident response centres, and the rules for security incident response and technical investigation, and for conducting vulnerability testing
https://nki.gov.hu/wp-content/uploads/2020/11/Gov.Dec_.-271_2018-on-CSIRT.pdf

Decree 41/2015. (VII.15.) of the Minister of Interior on the requirements relating to the technological security and secure information devices and products, and on the security classification and declaration of security levels determined in the Act L of 2013 on the information security of state and municipal bodies
https://nki.gov.hu/wp-content/uploads/2020/11/Decree-41_2015-of-the-Minister-of-Interior.pdf