Article

A new chapter for Turkish cybersecurity: Presidency of cybersecurity

A new chapter for Turkish cybersecurity: Presidency of cybersecurity
Published Date
Jan 10 2024
Authored By
Image of Umut Gürgey
Umut Gürgey Partner, Istanbul
Image of Caner Elmas
Caner ElmasPartner, Istanbul
The Presidency of cybersecurity (“Presidency”) has been established by the presidential decree on the presidency of cybersecurity (“Presidential Decree”), published in the Official Gazette dated January 8, 2025 and numbered 32776. This establishment represents a pivotal step in the anticipated rollout of the Turkish cybersecurity legislation, setting the tone for advancements in this field throughout the year.

Background

The creation of the Presidency aligns with several key objectives set out in previous plans and policy documents:

National Cybersecurity Strategy and Action Plan

The National Cybersecurity Strategy and Action Plan for 2024-2028 (“Action Plan”), published in the Official Gazette dated September 7, 2024 and numbered 32655, outlines Türkiye’s national vision for cybersecurity. This Action Plan sets six primary objectives that aims to:

  • Cyber resilience: Strengthen the resilience of information and communication technology infrastructure and enhance defence measures against cyber threats.
  • Proactive cyber defence and deterrence: Gain a strategic advantage by preventing cyber threats before they emerge.
  • Human-centric cybersecurity approach: Foster greater awareness and competency among individuals in cybersecurity.
  • Secure use of technology and contribution to cybersecurity: Define minimum-security standards for emerging technologies to ensure robust cyber defence.
  • Combating cyber threats with domestic and national technologies: Promote the development of domestic and national projects with increase incentives.
  • Türkiye’s international cybersecurity brand: Elevate Türkiye’s presence and visibility as a key player in regional and global cybersecurity arenas.

Medium Term Program 2025 - 2027

The Medium-Term Program for 2025-2027, published in the Official Gazette dated September 5, 2024 and numbered 32653, outlines Türkiye’s macroeconomic and social policy objectives. Within this framework, the program anticipates comprehensive legal reforms in cybersecurity, including secondary regulations, to align Turkish law with European Union standards.

Duties of the presidency

The Presidency will serve as the principal authority on matters ranging from cybersecurity legislation to risk management. Its primary duties include:

  • Developing cybersecurity policies, strategies, and action plans.
  • Enhancing cooperation between the public sector, private sector and academia / universities.
  • Promoting development of domestic and national technologies and products.
  • Facilitating technology transfer in critical areas of cybersecurity.
  • Preparing and implementing emergency and crisis management plans for cybersecurity.

Until the Presidency becomes fully operational, these activities will continue to be carried out by the relevant institutions currently handling them.

Conclusion

The establishment of the Presidency marks a significant milestone in Türkiye’s efforts to strengthen its national cybersecurity framework. With the publication of the Presidential Decree, the Presidency is poised to play a pivotal role in shaping and implementation of comprehensive cybersecurity policies, strategies, and laws. As 2025 unfolds, further developments in Türkiye’s cybersecurity legislation are anticipated, signalling a proactive approach to addressing both domestic and international challenges in the digital age.