Ukrainian President Volodymyr Zelenskyy has signed a sweeping cybersecurity bill aimed at bolstering the protection of state networks and critical infrastructure amid an ongoing surge in cyberattacks linked to Russia.
The newly ratified Law No. 4336-IX, titled “On Amendments to Certain Laws of Ukraine Regarding Information Protection and Cybersecurity of State Information Resources, Critical Information Infrastructure Objects,” introduces broad reforms to Ukraine’s national cyber strategy. It was approved by parliament on March 27 and signed into law last week.
With the war now deeply entrenched in both physical and digital domains, the law is designed to enhance Ukraine’s capacity to respond to threats targeting government systems and vital services. Officials said it marks a significant shift toward risk-based management, coordinated national response, and better information sharing.
“The implementation of this law will allow Ukraine to integrate even more effectively into the global cybersecurity ecosystem,” said Oleksandr Potii, head of Ukraine’s State Service of Special Communications and Information Protection. “Its adoption will contribute to increasing the resilience of Ukraine’s digital systems against modern challenges.”
Ukraine Cybersecurity Bill: Coordinated Response, Crisis Activation, Information Sharing
One of the most impactful aspects of the legislation is the creation of a National Cyber Incident Response System. This framework defines the roles, responsibilities, and coordination mechanisms among state response teams and agencies. It also introduces a crisis response protocol, allowing the government to rapidly activate emergency measures when facing large-scale or nation-state cyberattacks.
To complement these efforts, the law mandates the creation of a Cyber Incident Information Exchange System. This platform will streamline how incidents are reported, managed, and disclosed across both public and private sectors, fostering early warning and faster remediation.
The system’s design is informed by European Union practices and aims to minimize duplication and confusion in high-pressure scenarios.
Moving Beyond Legacy CIPS and Toward Lifecycle Risk Management
A major structural shift introduced by the law is the abandonment of the Comprehensive Information Protection System (CIPS)—a framework that critics say had grown outdated and inflexible.
In its place, Ukraine will adopt a modern risk management approach that emphasizes continuous security across the lifecycle of digital systems. Each system will now be subject to tailored protection profiles, with oversight mechanisms that stress agility over bureaucracy.
The legislation also provides for a cybersecurity assessment framework that includes periodic audits. Importantly, the government clarified that the audit process will avoid excessive interference, focusing instead on practical outcomes and organizational maturity.
Building Ukraine’s Cyber Workforce
To support implementation, the law requires the designation of dedicated cybersecurity officers within government ministries and critical infrastructure sectors. These roles are tasked with leading internal cyber policy, managing compliance, and interfacing with national authorities during incidents.
The move signals Ukraine’s intent to professionalize its cybersecurity workforce and reduce fragmentation in how cyber defense is managed at the institutional level.
Aligned With European Norms
In addition to domestic reforms, the legislation also positions Ukraine to align more closely with EU cybersecurity directives, including requirements on:
-
Cyber incident reporting
-
Roles and mandates of national response teams
-
Implementation of cybersecurity risk management in both public and private sectors.
Ukrainian lawmakers framed the law as a vital step in harmonizing legal frameworks with European partners, paving the way for deeper integration into transnational cybersecurity cooperation.
Attacks Surge, Prompting Urgency
CERT-UA, the country’s national Computer Emergency Response Team, reported a 70% increase in cyber incidents in 2024 compared to the previous year. The rise includes espionage, infrastructure sabotage, and psychological warfare campaigns—many of them linked to Russia.
As of early 2025, the upward trend shows no sign of slowing. In a public alert, CERT-UA said there is growing sophistication and persistence of attackers, especially those targeting telecommunications, energy, and military command systems.
Also read: Massive Cyberattack Hits Ukraine Railways, Disrupting Online Ticket Sales
Ukraine’s digital space is as much a frontline as the physical battlefield, said Potii. The country’s defenses must evolve constantly to match the adversary.
Ukraine’s ability to operationalize the law’s provisions will depend on support from both domestic institutions and international partners.
NATO allies and European cyber agencies are expected to play a role in technical assistance, as Ukraine seeks to reinforce its cyber posture not only for wartime resilience but long-term digital sovereignty.
With this law, Ukraine joins a growing list of countries recognizing that modern cybersecurity policy must be proactive, deeply integrated, and strategically aligned across government and critical infrastructure sectors.
