CYBERWELLNESS PROFILE MEXICO
advertisement
CYBERWELLNESS PROFILE MEXICO BACKGROUND Total Population: 116 147 000 Internet users, percentage of population: 43.46% (data source: United Nations Statistics Division, December 2012) (data source: ITU Statistics, December 2013) 1. CYBERSECURITY 1.1 LEGAL MEASURES 1.1.1 CRIMINAL LEGISLATION Specific legislation on cybercrime has been enacted through the following instruments: -Federal Criminal Code. 1.1.2 REGULATION AND COMPLIANCE Specific legislation and regulation related to cybersecurity has been enacted through the following instruments: -Law on Advanced Electronic Signatures. 1.2 TECHNICAL MEASURES 1.2.1 CIRT Mexico has an officially recognized national CIRT known as CERT-MX. 1.2.2 STANDARDS In Mexico compliance with ISO standard 207001’s requirements for an information security management system is required of all key government institutions. This is the nationally recognized framework for implementing internationally recognized cybersecurity standards. 1.2.3 CERTIFICATION There is no cybersecurity framework for the certification and accreditation of national agencies and public sector professionals in Mexico. 1.3 ORGANIZATION MEASURES 1.3.1 POLICY The Specialized Information Security Committee (CESI) was created to develop a National Strategy for Information Security (ENSI), which guides all actions to be undertaken by entities of the federal government to prevent, identify, neutralize or counteract risks and threats to information security. 1.3.2 ROADMAP FOR GOVERNANCE There is no national governance roadmap for cybersecurity in Mexico. 1.3.3 RESPONSIBLE AGENCY The Federal Police of Mexico of a national cybersecurity strategy, policy and roadmap by respective agencies. 1.3.4 NATIONAL BENCHMARKING There is no national benchmarking or referential to measure cybersecurity development in mexico. 1.4 CAPACITY BUILDING 1.4.1 STANDARDISATION DEVELOPMENT 1 There are no projects or programs for research and development of cybersecurity standards, best practices and guidelines. 1.4.2 MANPOWER DEVELOPMENT Personnel at the Scientific Division have received and continue to participate in specialized training from the Police Development System of Mexico (SIDEPOL), as well as from numerous other security and law enforcement organizations in countries including Colombia, the US, Holland and Japan. Government-led efforts to promote increased cybersecurity awareness have included the organization of various conferences for both government institutions and educational institutions. 1.4.3 PROFESSIONAL CERTIFICATION Mexico does not have the exact number of public sector professionals certified under internationally recognized certification programs in cybersecurity. 1.4.4 AGENCY CERTIFICATION Mexico does not have any certified government and public sector agencies certified under internationally recognized standards in cybersecurity. 1.5 COOPERATION 1.5.1 INTRA-STATE COOPERATION There is no information about any framework for sharing cybersecurity assets across borders with other nation states. 1.5.2 INTRA-AGENCY COOPERATION Mexico has officially recognized national or sector-specific programs for sharing cybersecurity assets within the public sector through CESI authorities have also developed a collaboration protocol between CERT-MX and the various dependencies of the Mexican central government to address and respond to cyber incidents. 1.5.3 PUBLIC SECTOR PARTNERSHIP CERT-MX also communicates and cooperates directly with private institutions. The ENSI has as one of its primary aims further increasing and institutionalizing cooperation and information-sharing between all sectors of the societypublic and private- in a more integrated fashion. 1.5.4 INTERNATIONAL COOPERATION To facilitate participation in regional/international cybersecurity platforms and forum Mexico is a member of: -FIRST -OAS/CICTE. 2. CHILD ONLINE PROTECTION 2.1 NATIONAL LEGISLATION Specific legislation on child online protection has been enacted through the following instruments: -Law for the Protection of Children and Adolescents* -nothing regarding internet. 2.2 UN CONVENTION AND PROTOCOL Mexico has acceded, with no declarations or reservations to articles 16, 17(e) and 34(c), to the Convention on the Rights of the Child. Mexico has acceded, with no declarations or reservations to articles 2 and 3, to the Optional Protocol to The Convention on the Rights of the Child on the Sale of Children, Child Prostitution and Child Pornography. 2 2.3 INSTITUTIONAL SUPPORT The Department of Public Safety has issued a document from a cyber-crime workshop containing information on cyber-threats. The national system eMexico works on internet security and presents information on security of internet for children. 2.4 REPORTING MECHANISM Complaints can be made to The Crimes against Children and Cyber Police Unity by the number 5241-0420 or 01800 440 3690 or by the email policia_cibernetica@ssp.gob.mx. Security Alliance in Mexico provides space for complaints in its website. ----------------------------------------------------------------------------------------------------------------------------------------------------------DISCLAIMER: Please refer to http://www.itu.int/en/Pages/copyright.aspx More information is available on ITU website at http://www.itu.int/en/ITU-D/Cybersecurity/Pages/default.aspx Last updated on 19th February 2015 3
