In March 2016, the Inter-American Development Bank (IDB) and the Organization of American States (OAS) launched the first edition of the report “Cybersecurity risks, progress and the way forward in Latin America and the Caribbean”. The objective was to offer countries in the region not only an overview of cyber security in these locations, but also guidance on what would be the next steps to be taken to strengthen national capabilities in the area. Since then, 4 years have passed. Since then, technology has evolved at a rapid pace and the adoption of the Internet of Things (IoT), which was a trend at that time, is now a reality. THE this year's edition it provides an assessment of the countries' position in comparison with 2016 and the measures that have been adopted over time.
The chapter destined for Brazil opens with information about the establishment of Federal Decree nº 10.222 102, of February 5, 2020, just before the start of the covid-19 pandemic reaching the country, which approved the National Cybersecurity Strategy. The Decree was considered a major step forward in creating a centralized governance model to promote coordination between the different actors related to cybersecurity and to establish a national cybersecurity council. The study also mentions the Marco Civil da Internet no Brasil (Lei nº 12.965), developed through a consultation process with several interested parties to regulate the use of Internet in Brazil, establishing principles, guarantees, rights and duties for users of the Internet. Internet. However, despite the implementation of the policies, the report points out that Brazil did not have a specific data protection or privacy law (note: the implementation of the General Data Protection Law (LGPD) in Brazil was approved to be put into practice) later this year, but awaited presidential sanction until the end of this edition of TI Safe News).
In summary, according to the publication, the country's cybersecurity culture fluctuates according to different regions and sectors of government and the economy. The financial and ICT sectors are more advanced, as they are frequent targets and, therefore, are investing more. However, society as a whole still lacks a security mentality. The report points out that users are aware of the risks, but generally do not act according to their day-to-day practices.