Legal Obligations and Cybersecurity Frameworks

This event, held on December 12, 2024, laid the groundwork for the series that we now present under its correct title, DIALOGHI TRA DIRITTO E TECNOLOGIA. Its premise was clear: cybersecurity is not only a technical matter, but also a space in which architectures, legal obligations, risk models, and organisational responsibilities must be read together.

The programme combined multiple perspectives: NIS2 and cybersecurity compliance with Giorgio Pedrazzi, the NIST CSF 2.0 introduced by Francesco Gringoli, the NIST Risk Management Framework and the NIST AI Risk Management Framework presented by Federico Cerutti, and the new challenges raised by the EU AI Act. The session concluded with an open Q&A.

The ethos of the series begins here: to bridge computer science and legal studies so that those who design systems understand regulatory implications, while those working on law can engage with the real constraints of engineering, processes, and digital infrastructures.

The event took place in the Sala Consiliare di Ingegneria at the University of Brescia, with online participation through Microsoft Teams and accreditation for the local bar and engineering professional bodies.