In the field of information security, it is essential that public and private organizations comply with established standards and regulations to guarantee data protection and system integrity. In this context, the Public Entity for Tax Services of the Principality of Asturias has taken the initiative to contract a situation analysis service regarding compliance with National Security Scheme (ENS)awarding it to our company, Soltel.

In this article, we will explore the key aspects of this contract and the importance of ENS compliance in the public sector environment.

Objective of the contract with the Public Entity of Tax Services of the Principality of Asturias

The main objective of this contract is To carry out a thorough analysis of the alignment of services and information handled by the Public Entity in relation to the ENSThe National Security Framework, regulated by Royal Decree 311/2022, establishes the security requirements and measures that public administrations in Spain must follow to guarantee the protection of information. This analysis will allow for an assessment of the public entity's current situation regarding compliance with the National Security Framework and the development of an adaptation plan to obtain certification of conformity.

Services for analysis in compliance with the ENS

The minor contract awarded to Soltel includes several tasks, which we could group into two main points:

1. Assessment of the existing gap for the adaptation of the Public Entity to the ENS:
   • This task focuses on diagnosing the organization's current level of compliance with the regulations and measures established in the National Security Framework (ENS). The objective is to identify areas for improvement and establish a roadmap for the adaptation process.
2. Generation of essential documents for the adaptation of the ENS:
   • A review and/or evaluation of the Public Entity's security policy will be conducted to ensure its compliance with the National Security Framework (ENS). In addition, support will be provided in defining roles and responsibilities in accordance with the ENS.
   • In addition, an initial assessment of the information handled and the services provided by the Public Entity will be generated, in accordance with Annex I of the standard, as well as an initial declaration of applicability in accordance with Annex II.
   • Finally, a technical security report will be prepared aligning Windows and Linux assets with the corresponding CCN-STIC guidelines.

Soltel: Experts in ENS compliance

Compliance with the National Security Framework is essential to guarantee the confidentiality, integrity, and availability of information managed by the Public Entity for Tax Services. In Soltel, having met all the requirements of the ENSWe are able to analyze this situation in other companies and public entities, verifying that they have the appropriate security measures in place to protect information from potential threats and risks.

We add to the above that Compliance with the ENS is essentialThis strengthens citizens' trust in the institution and demonstrates its commitment to protecting their data. Therefore, the situation analysis regarding compliance with the National Security Scheme (ENS) of the Public Entity for Tax Services of the Principality of Asturias and the awarding of this contract to Soltel it demonstrates the public entity's commitment to protecting this data, contributing to a safer and more reliable digital environment for all citizens.