Brazil improves its position in the 2020 global cybersecurity ranking
Several Latin American countries have advanced in the Global Cybersecurity Index, a report supported by the International Telecommunication Union (ITU). Brazil, Mexico, Uruguay, Dominican Republic, and Chile had the best performances in the region.
Although there are still several tasks outstanding in Latin America related to cybersecurity, most Latin American countries managed to climb positions in the index.
The best-ranked Latin American country was Brazil, ranking 18th in the index, followed by Mexico, Uruguay, Dominican Republic, and Chile. By climbing 53 positions in the ranking, the country also became the third-best in America, behind only the United States and Canada.
Mexico rose from position 63 in 2018 to position 52 in the ITU’s 2020 Global Cybersecurity Index. The country’s rating was 81.68 points and, at the continental level, it remains in fourth place in cybersecurity, with the United States and Canada again ahead, although there is a change in the third place, conquered by Uruguay in 2018 and the last year. Brazil rose to this position.
The Union’s analysis places Mexico as a developing country. It is worth mentioning the indicator that has proven to be strong in cybersecurity is cooperation measures, with a score of 17.34 out of 20, despite obtaining the best rating in technical measures, with 17.90.
As a potential area for growth, the international organization mentions regulatory measures, with Mexico reaching its lowest score at 14.70 points.
Chile currently occupies 74th place in the world rank, having reached the 83rd position in the previous list. At the same time, Chile rose from ninth place in the last GCI to seventh.
Keep reading and learn more about the report and the factors that led Brazil to improve its position in the global cybersecurity ranking.
What is the Global Cybersecurity Index (GCI)?
The Global Cybersecurity Index (GCI) is an initiative of the International Telecommunication Union (ITU), the UN specialized agency for ICTs, shaped and enhanced by the work of a wide range of experts and associates from countries and other international organizations.
The Global Cybersecurity Index (GCI) is a credible benchmark that measures countries’ commitment to cybersecurity at the global level to raise awareness about its importance and different dimensions. As cybersecurity has a wide field of application, covering many industries, the level of development or involvement of each country is evaluated in five pillars: (I) Legal Measures, (II) Technical Measures, (III) Organizational Measures, (IV) Capacity Building, and (V) Cooperation, and then they aggregated into an overall score.
Based on a multi-stakeholder approach and initiative, the GCI leverages the capacity and experience of different organizations to improve the quality of research, foster international cooperation, and promote the exchange of knowledge on the subject.
Global Cybersecurity Index (GCI) In the World
Overall, the United States had the best result with 100 points, followed by the United Kingdom, Saudi Arabia, Estonia, Korea, Singapore, and Spain.
The worst-ranked countries were Honduras, Djibouti, Burundi, Eritrea, Equatorial Guinea, and North Korea.
Micronesia, Vatican, and Yemen are placed at the bottom of the index because they did not provide information.
Are you enjoying this post? Join our Newsletter!
Global Cybersecurity Index (GCI) Methodology
The index brings together 82 questions about member countries’ cybersecurity commitments in five pillars: legal, technical, organizational, capacity building, and cooperation measures.
Measurement of the maturity of cybercrime and cybersecurity laws and regulations.
This pillar assesses questions such as: whether the countries have any cybersecurity legislation, data protection regulations, and critical infrastructure regulations.
Measurement of the application of technical capacities through national and sectoral organizations.
This pillar assesses questions such as: whether the countries have active CSIRTs (Computer Security Incident Response Teams), participate in a regional CSIRT, and have reporting mechanisms for the protection of children online.
Assessment of national strategies and organizations that apply cybersecurity.
This pillar assesses questions such as: whether the countries have national cybersecurity strategies, cybersecurity agencies, strategies, and initiatives for the protection of children online.
Capacity Building Measures
Measurement of awareness campaigns, training, education, and incentives for the development of cybersecurity capabilities.
This pillar assesses questions such as: whether the countries perform cybersecurity awareness initiatives, whether they have programs in cybersecurity, and whether they claim to have national cybersecurity industries.
Measurement of collaboration between agencies, companies, and countries.
This pillar assesses questions such as: whether the countries participate in public-private cybersecurity partnerships, and whether they have bilateral cybersecurity agreements and multilateral cybersecurity agreements.
Brazil climbs 53 positions in the Global Cybersecurity Index (GCI) in 2020
In the case of Brazil, the federal government’s plans to digitize its public services, as well as national law for the protection of citizens’ information, such as the LGPD (General Data Protection Law), weighed heavily.
The rise was also well praised by specialists, who highlight the work that has been done over the past 15 years. Federal regulations such as the Cybercrime Law of 2021 and the Internet Civil Framework of 2013 helped to pave the way and introduce the topic among the strategic concerns of the Brazilian government. These advances are a necessary response to the growing threat that state and non-state players pose to the security of countries.
Brazil still has a long way to go in the area of cybersecurity, but the governmental concern proved by the LGPD, for example, is remarkable. Brazil still lacks a cybersecurity culture, and one of the biggest missions of the National Data Protection Agency (ANPD) is to create and spread initiatives of this type in the country.
If you liked the content, we recommend that you add to your reading with the text LGPD: How to Comply With the 10 Privacy Principles.