Publication date:
Publication from:
Members of the Association IT Ukraine took part in the Kyiv International Cyber Resilience Forum 2026, dedicated to the practical aspects of developing Ukraine’s national cyber defence and incident response system.
As part of the forum, a dedicated session was held where representatives of government authorities, including the State Service of Special Communications and Information Protection of Ukraine, presented current approaches to organising cybersecurity in the public sector, as well as new regulatory and procedural frameworks shaping a systematic model for responding to cyber incidents in Ukraine.
The discussion focused on the key components of the new architecture, including:
baseline cybersecurity measures and planning approaches;
the procedure for appointing responsible cybersecurity officers;
requirements for professional competence and training of specialists.
Particular attention was paid to cyber hygiene and systematic staff training — from briefings and training sessions to the engagement of in-house teams and external experts.
Significant emphasis was also placed on identifying potential vulnerabilities, system scanning, cybersecurity assessments, and state oversight. Participants discussed monitoring and audit mechanisms, assessment outcomes, and liability for violations of cybersecurity legislation. The forum also outlined approaches to cooperation among entities within the national incident response system, including information sharing, interagency coordination, and joint actions in response to cyber incidents, cyberattacks, and emerging threats.
A separate session was devoted to the National Response Plan, covering all stages — from preparedness and detection to containment, mitigation, post-incident assessment, and the further development of sectoral and regional computer emergency response teams (CERTs) and cybersecurity centres.
For the Association IT Ukraine, participation in such events is essential for aligning the business community with the state’s approach to cyber resilience and for fostering a shared understanding of future requirements regarding processes, roles, and competencies in the field of cybersecurity.
