Creating The National Cybersecurity Inter-Agency Committee

Case Overview and Summary

Summary of Executive Order No. 189

Creating the National Cybersecurity Inter-Agency Committee
• Creates the Cybersecurity Inter-Agency Committee under the Office of the President. (Section 1)
• Chaired by the Executive Secretary, co-chaired by the Director General of the National Security Council and the Secretary of the Department of Science and Technology. (Section 1)
• Composed of various government officials as members, including secretaries of different departments. (Section 1)
• The Committee may invite other public and private agencies or entities to participate. (Section 1)

Functions of the Committee
• Assess the vulnerabilities of the country's cybersecurity. (Section 2a)
• Issue updated security protocols to all government employees for handling and distributing documents and communications, following best practices and updating periodically. (Section 2b)
• Enhance public-private partnership in information sharing involving cyberattacks, threats, and vulnerabilities. (Section 2c)
• Conduct periodic strategic planning and workshop activities to reduce the country's vulnerabilities to cyber threats. (Section 2d)
• Direct member agencies and appropriate agencies to implement cybersecurity measures as required. (Section 2e)
• Serve as the country's coordinating arm on domestic, international, and transnational efforts pertaining to cybersecurity. (Section 2f)
• Make recommendations and reports as directed by the President. (Section 2g)
• Perform other necessary functions. (Section 2h)

National Cybersecurity Coordination Center (NCCC)
• Creates the NCCC to act as the secretariat of the Committee. (Section 3)
• Composed of officials from member agencies and other designated agencies. (Section 3)
• The Committee shall provide guidelines for the creation of the NCCC, including the ranks of officials. (Section 3)
• The NCCC shall constitute a National Computer Emergency Response Team (NCERT) with the head of the NCCC as the team leader. (Section 3)
• The NCERT shall issue guidelines on handling government data/information by CERTs and perform oversight and audit functions. (Section 3)

Creation of Computer Emergency Response Teams (CERTs)
• All government bureaus, offices, agencies, and instrumentalities shall organize their respective CERTs, subject to guidelines issued by the Cybercrime Investigation and Coordinating Center (CICC). (Section 4)
• All CERTs in the country shall directly report to the CICC. (Section 4)

Transfer of CICC
• The CICC, created under the Cybercrime Prevention Act of 2012, shall be under the administrative and policy supervision of the Committee. (Section 5)

Funding
• Member agencies are authorized to charge against their current appropriations for the implementation of this Order. (Section 6)
• The Department of Budget and Management shall identify additional funds and possible funding sources as necessary. (Section 6)
• Subsequent funding requirements shall be incorporated in the annual budget proposal of the respective agencies through the General Appropriations Act. (Section 6)

Separability and Repeal
• If any provision is declared invalid or unconstitutional, the other provisions shall remain valid. (Section 7)
• All orders, rules, regulations, and issuances inconsistent with this Order are repealed or modified accordingly. (Section 8)

Effectivity
• This Order shall take effect immediately upon its publication in a newspaper of general circulation. (Section 9)