From Prevention to Resilience
Cyber threats continue to outpace conventional defense strategies, underscoring the need for more adaptive security approaches. This study examines how six principal European Union frameworks, including the Network and Information Security Directive (NIS2) and the Digital Operational Resilience Act...
Saved in:
| Main Author: | |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Naif University Publishing House
2025-06-01
|
| Series: | Journal of Information Security and Cybercrimes Research |
| Subjects: | |
| Online Access: | https://journals.nauss.edu.sa/index.php/JISCR/article/view/3230 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1849396722897256448 |
|---|---|
| author | Jersain Zadamig Llamas Covarrubias |
| author_facet | Jersain Zadamig Llamas Covarrubias |
| author_sort | Jersain Zadamig Llamas Covarrubias |
| collection | DOAJ |
| description | Cyber threats continue to outpace conventional defense strategies, underscoring the need for more adaptive security approaches. This study examines how six principal European Union frameworks, including the Network and Information Security Directive (NIS2) and the Digital Operational Resilience Act (DORA), align with modern operational tactics: Redirect, Obviate, Impede, Detect, Limit, and Expose. Using a structured qualitative methodology, including legislative text analysis and cross-referencing with real-world incidents, the research maps each regulation’s provisions to specific defensive functions. Results indicate that while prevention, detection, and coordinated incident response are well addressed, more assertive tactics, such as diverting attackers to decoy environments or employing strategic deception, remain largely absent. This gap may limit the EU’s overall capacity to counter sophisticated threats that circumvent static defenses. In conclusion, supplementing existing regulations with practical guidance and controlled pilot initiatives could enhance cyber resilience without compromising legal or ethical standards. Such measures would empower both public and private entities to adopt a broader range of defensive strategies, ultimately strengthening Europe’s posture against increasingly advanced cyberattacks. |
| format | Article |
| id | doaj-art-65eb51500bc14c0ea647e6d8fe7c330a |
| institution | Kabale University |
| issn | 1658-7782 1658-7790 |
| language | English |
| publishDate | 2025-06-01 |
| publisher | Naif University Publishing House |
| record_format | Article |
| series | Journal of Information Security and Cybercrimes Research |
| spelling | doaj-art-65eb51500bc14c0ea647e6d8fe7c330a2025-08-20T03:39:15ZengNaif University Publishing HouseJournal of Information Security and Cybercrimes Research1658-77821658-77902025-06-0181174210.26735/VVMS18972934From Prevention to ResilienceJersain Zadamig Llamas Covarrubias0Division of Legal Studies, University Center of Social Sciences and Humanities, University of Guadalajara, Guadalajara, Jalisco, Mexico.Cyber threats continue to outpace conventional defense strategies, underscoring the need for more adaptive security approaches. This study examines how six principal European Union frameworks, including the Network and Information Security Directive (NIS2) and the Digital Operational Resilience Act (DORA), align with modern operational tactics: Redirect, Obviate, Impede, Detect, Limit, and Expose. Using a structured qualitative methodology, including legislative text analysis and cross-referencing with real-world incidents, the research maps each regulation’s provisions to specific defensive functions. Results indicate that while prevention, detection, and coordinated incident response are well addressed, more assertive tactics, such as diverting attackers to decoy environments or employing strategic deception, remain largely absent. This gap may limit the EU’s overall capacity to counter sophisticated threats that circumvent static defenses. In conclusion, supplementing existing regulations with practical guidance and controlled pilot initiatives could enhance cyber resilience without compromising legal or ethical standards. Such measures would empower both public and private entities to adopt a broader range of defensive strategies, ultimately strengthening Europe’s posture against increasingly advanced cyberattacks.https://journals.nauss.edu.sa/index.php/JISCR/article/view/3230information securitycybersecurity resilienceoperational tacticseu regulationscyber defense strategies |
| spellingShingle | Jersain Zadamig Llamas Covarrubias From Prevention to Resilience Journal of Information Security and Cybercrimes Research information security cybersecurity resilience operational tactics eu regulations cyber defense strategies |
| title | From Prevention to Resilience |
| title_full | From Prevention to Resilience |
| title_fullStr | From Prevention to Resilience |
| title_full_unstemmed | From Prevention to Resilience |
| title_short | From Prevention to Resilience |
| title_sort | from prevention to resilience |
| topic | information security cybersecurity resilience operational tactics eu regulations cyber defense strategies |
| url | https://journals.nauss.edu.sa/index.php/JISCR/article/view/3230 |
| work_keys_str_mv | AT jersainzadamigllamascovarrubias frompreventiontoresilience |