Responsibility of society

All serious cyber incidents must be reported. Find out more about which authorities are responsible for what and what they do to protect information security.
Published
Foto: Hasse Bengtsson/Johnér
IT-lösningar är ofta komplext uppbyggda.

IT systems and services are often complex. In order to create a better picture of IT incidents and their consequences, government agencies are obliged to report all serious incidents that occur to Cert-SE at MSB.

Incidents in systems that handle classified information and concern Sweden's security must be reported to the Swedish Security Service.

Anyone providing telecoms services or network connections must, by law, maintain a reasonable level of technical security in their operations. The Swedish Post and Telecom Authority (PTS) is the authority responsible for supervision and control.

Sources of this page: the Swedish Defence Research Agency (FOI), the Swedish Post and Telecom Authority (PTS), the Swedish Civil Contingencies Agency (MSB) and Cert-SE.