The International Telecommunication Union (ITU) published, nessa quinta-feira (12/9), the fifth edition ofGlobal Cybersecurity Index 2024(Global Cybersecurity Index – GCIv5, demonstrating the continuity of Brazil's progress in developing its capabilities in the subject. In 2018, Brazil was ranked as the sixth country in the Americas, in 2021 as third and in this most recent edition, the second country most committed to the ITU Global Cybersecurity Agenda that encompasses the capabilities developed regarding legal measures; technical and procedural measures; organizational structures (governance); training and awareness; and international cooperation
It is worth noting that Anatel, as a representative of Brazil in international telecommunications organizations, was again responsible for coordinating and submitting Brazil's response to the fifth edition of the Index, counting on the collaboration of various bodies and entities essential to the process in this edition, especially, do Gabinete de Segurança Institucional da Presidência da República (GSI/PR); of the Ministry of Foreign Affairs; and from the Information and Coordination Center of Ponto BR (NIC.br)
The fifth edition of the GCI innovates by eliminating the ranking classification, based on a decision by the Member States adopted at the last World Telecommunication Development Conference held in 2022, and start classifying countries into groups, with Brazil classified in Group 1 as a model. The full report can be consulted athttps://www.itu.int/en/ITU-D/Cybersecurity/Documents/GCIv5/2401416_1b_Global-Cybersecurity-Index-E.pdf .
Check the figure below for the classification of the countries of the Americas
Additionally, the Brazilian contribution to the process and improvement of GCIv5 is highlighted, given that Anatel led the Correspondence Group and the Regional Center for Studies on the Development of the Information Society (Cetic.led the development of the methodology for changing the ranking for classification into groups
Regarding GCIv4, published in 2021, the main highlights that justify Brazil's position are the enactment of the National Cybersecurity Policy (PNCiber) and the creation of the National Cybersecurity Committee (CNCiber), by Decree No. 11.856, 26 December 2023; the adherence of Brazil to the Budapest Convention, promulgated in Brazil by Decree No. 11.419, 12 April 2013; the Hackers do Bem Program; os Atos de Certificação da Anatel com requisitos mínimos de segurança cibernética (Atos 77/2011 e 2436/2023 da Anatel; the edition of the Cybersecurity Guidelines for Telecommunications Service Providers – Basic Level; among other actions related to the 5 assessed pillars – legal measures; technical and procedural measures; organizational structures (governance); training and awareness; and international cooperation
Anatel has been making various efforts in this area and recently updated its Cybersecurity Regulation (R-Ciber) – Resolução nº 740/2020). The R-Cyber, which created the Technical Group on Cybersecurity and Risk Management of Critical Infrastructure (GT-Ciber) of Anatel, with the aim of strengthening the organizational structures of Brazilian society and collaborating with the development of actions related to cybersecurity.Furthermore, Anatel created on its portala space dedicated to cybersecuritywith the current public policies, available regulation, certification acts, decisions of the GT-Cyber and decision repository, studies and awareness materials
