Cyber and physical security – integrated by design.
Cyber and physical security have lived in separate rooms for decades. Not anymore. Hybrid threats cross the line between both worlds every single day. This Working Group is the Czech-Japan platform where security, resilience, and regulation meet on both sides of that line. Our goal is to be stronger and more resilient to the new challenges.
Both countries have placed critical infrastructure protection at the top of national priorities. Operational resilience has moved from a board-level term into a legal obligation – DORA (the Digital Operational Resilience Act) in financial services, analogous logic spreading sector by sector. And hybrid attacks combining cyber and physical dimensions are no longer the exception.
In May 2025, Japan adopted the Active Cyber Defense Law (ACDL) – a foundational shift in Japanese security doctrine that, for the first time, permits proactive defensive measures against state-level cyber threats. The law takes full effect in phases through 2027.
In Czechia, the new Cybersecurity Act transposing the Network and Information Security Directive 2 (NIS2) is being implemented across 2025–2026, alongside the EU Cyber Resilience Act (CRA), which fundamentally rewrites the obligations of digital product manufacturers. The scope of regulated entities is expanding into healthcare, energy, transport, water, finance, and digital services.
In this specific window, the Czech-Japan Hub is the only functioning bridge between the Czech and Japanese security and resilience ecosystems.
Smart buildings, OT/IT integration, IoT, video surveillance, and access control treated as one security architecture, not two budget lines. The core of this Working Group.
Compliance and operational adaptation to NIS2, CRA, and ACDL, with a focus on the seams where the three frameworks meet – and on the DORA-style logic spreading across sectors.
Energy, healthcare, transport, water, finance, and digital infrastructure: the sectors where outages stop being inconvenient and become a matter of national interest.
Pre-defined playbooks, exercises, and bilateral coordination for incidents that cross borders. BCM, BCP, DR, and BIA as one connected discipline – not four separate drills.
Formats of structured dialogue with NÚKIB, NCO, METI, the Digital Agency, and sectoral regulators on both sides.
The Working Group is designed for senior decision-makers carrying responsibility for the security and resilience of their organisation as a whole – not for any single technology stack.
Access to this Working Group is open to Corporate Members and above with an interest in the sector. Members joining Founders 2026 by 30 June 2026 receive permanent Founding Member status – a designation no later member can earn.
