National Cybersecurity Plan 2017-2022 of the Philippines
January 2017
Strategies and Action Plans
The ‘National Cybersecurity Plan 2017-2022’ of the Philippines outlines a strategic framework to enhance the nation’s cybersecurity posture in response to the evolving digital landscape. This plan addresses the growing threats and vulnerabilities that accompany increased internet usage and digital transformation. By focusing on key areas such as infrastructure protection, cyber resiliency, law enforcement collaboration, and public education, the plan aims to safeguard the country’s critical systems and data, ensuring a secure and resilient cyberspace
The plan is structured around four primary objectives, each focusing on a critical aspect of the nation’s cybersecurity strategy.
The first objective is to ensure the continuous operation of critical information infrastructures and public and military networks. This involves protecting essential information and communication systems that are crucial for public safety, national security, and economic stability. The plan includes implementing robust security measures, conducting regular risk assessments, and ensuring redundancy and resilience in these critical systems.
The second objective is the implementation of cyber resiliency measures to enhance the nation’s ability to respond to threats. This objective aims to build a resilient cyber environment capable of withstanding and recovering from cyber incidents. To achieve this, the plan outlines the development of comprehensive incident response strategies, the conduct of cybersecurity drills and exercises, and the establishment of a Cybersecurity Emergency Response Team (CERT).
The third objective focuses on effective coordination with law enforcement agencies in protecting cyberspace and identifying and prosecuting cybercriminals. This involves enhancing collaboration between various government and private sector entities to improve information sharing, streamline investigation processes, and ensure that cybercrimes are effectively addressed and prosecuted.
The fourth objective aims to strengthen cybersecurity education, awareness, and research. This includes promoting cybersecurity awareness among the public and private sectors, integrating cybersecurity into the educational curriculum, and supporting research and development initiatives to stay ahead of emerging cyber threats. By fostering a culture of cybersecurity, the plan aims to equip individuals and organizations with the knowledge and tools necessary to protect themselves in the digital landscape.