Cyber Security Raad (Dutch Cyber Security Council) Highlights Rising Threat of Digital Disruption

The risk of large-scale digital disruption in the Netherlands is real and increasing. This warning comes from the 'Cyber Security Raad', which is urging the newly appointed cabinet to take decisive action. The Council calls on the government to allocate €690 million to strengthen the digital resilience of the Netherlands, emphasizing that long-term investment is crucial to protect society against growing cyber threats.

According to the Council, the Netherlands has become increasingly dependent on digital systems in vital sectors, including energy, healthcare, transport, finance, and government services. While digitalisation offers major advantages, it also makes society more vulnerable to cyberattacks, system failures, and geopolitical tensions. A serious disruption could have far-reaching consequences for public safety, economic stability, and trust in institutions.

Cyber threats are no longer hypothetical

Digitalisation forms the backbone of Dutch society and the economy. At the same time, digital threats are increasing rapidly, driven in part by rising geopolitical tensions and the emergence of AI-driven cyberattacks. The Council identifies four policy priorities:

1. Strengthen the digital resilience of government, critical infrastructure and businesses

Cyberattacks on vital sectors and central government are increasing sharply. Therefore, resilience must be enhanced particularly in the telecommunications and energy sectors, which form the central nervous system of all other processes. The Council also calls for more robust supply chains, improved information-sharing on threats between government and businesses, more frequent crisis simulations, and investments in physical and digital fallback scenarios. In addition, the resilience gap within SMEs must be addressed.

2. Invest in digital autonomy

The Netherlands is overly dependent on large non-European technology companies, creating significant risks to national security and the protection of user data. The Council recommends investing in European alternatives, raising awareness among end users about the choices they make, developing a sovereign government cloud, and strengthening strategic supplier management within the public sector.

3. Prepare the Netherlands for AI-driven threats

AI is making cyberattacks faster, more autonomous and harder to detect. AI-enabled attacks are quicker and more scalable than traditional cyberattacks and are already being deployed autonomously by malicious actors, often state-sponsored. The CSR calls for increased European cooperation and investments in knowledge development and new defensive technologies.

4. Better protect citizens against cybercrime

Cybercrime continues to rise, while many incidents remain invisible. In the near future, this could lead to societal disruption. In this area, the Netherlands is lagging behind other countries. The Council therefore advocates improved public awareness, the development of digital skills from primary education onwards, strengthened capacity within the police and public prosecution services, and the establishment of a central point for reporting incidents and receiving recovery advice following cyberattacks.

5. Enabling conditions: talent, knowledge and legislation

The shortage of cybersecurity professionals poses a growing risk. The CSR calls for a coordinated approach, expanded education and training opportunities, and additional funding for research. Furthermore, the government must invest sufficiently in the implementation and oversight of new EU legislation, such as the Cybersecurity Act and the Cyber Resilience Act, while avoiding unnecessary regulatory burdens.

€690 million in structural funding required

To date, insufficient investment has been made in implementing the Dutch Cybersecurity Strategy and the measures needed to strengthen resilience. The Council considers it urgently necessary for the new government to include €690 million in structural funding in the new coalition agreement to safeguard the Netherlands’ digital security, in line with the new NATO benchmark of 1.5% for broader resilience.

Source: Cyber Security Raad

Photocredits: ismagilov