ANSSI 2023 annual review

2023 has been filled of rich experiences and many challenges. With geopolitical tensions rising and international events taking place in France, the level of IT threats has continued to increase. The Rugby World Cup, held in September 2023, was an opportunity for the Agency to challenge its operational resources, in coordination with all the government departments concerned, in the perspective of the Paris 2024 Olympic and Paralympic Games (JOP). It's gratifying that this event took place without any notable cybersecurity incidents, just as no hospital was paralyzed over the past year. This is the proof that the directions taken recent years by the Agency and the French government are yielding results.

In response to the massification of the threat, the second Network and Information Security Directive, known as "NIS 2", aims to raise the cyber maturity of all the value chains in our economy and public services, by imposing harmonized and proportionate IT security rules. Preparing its transposition obviously kept us busy throughout 2023, and mobilized a great deal of expertise within the Agency. In particular, consultations have been initiated to co-construct these future requirements with the entities concerned, and will continue over the coming months.

Finally, 2023 was also highlighted by the inauguration of ArteFact, our new site in Rennes. With the opening of this new site, the Agency is strengthening not only its network detection and supervision activities, but also its expertise and knowledge of the threat, in cooperation with its partners. The level of the threat requires us to adapt and extend our range of services, and to develop cooperation with an extensive ecosystem of institutional, industrial and academic partners. This networking includes CSIRT relays, Cybermalveillance.gouv.fr, other government entities, as well as Cyber Campuses and private service providers.