3
2. The construction of an open, safe and reliable cyberspace cannot be a task only for
governments. Participation in capacity building is important not only for state actors but
also international organizations, civil society and the technical community. The
participation of non-governmental actors within the processes should be promoted, both
in the Group of Experts and the Open-Ended Working Group, in order to achieve a true
democratic and participatory approach.
3. The capacity building strategy should include not only training in cyber diplomacy, but
also training in diplomatic matters for technicians. It could also include, as it already
exists at the regional level, joint exercise and training programs between the countries of
the region, from a gender perspective, understanding training as a measure of confidencebuilding.
4. The creation of Regional Research Centers (or Centers of Excellence) that allow the
exchange of information, the execution of courses, seminars, and dissemination activities
would be an invaluable pillar for the transfer of knowledge and for countries to gradually
build trust which is necessary to raise levels of cooperation.
5. Uruguay has identified as vital services for the operation of the government and the
country's economy the services related to health, public order, emergency services,
energy, telecommunications, transport, drinking water supply, ecology and environment,
agro-industry, public services, banking and financial services or any other service that
affects more than 30% of the population.
6. In 2014, Uruguay approved Decree No. 92/014 that establishes the technical
requirements for data centers that store information from the Public Administration.
7. Likewise, a Cybersecurity Framework was approved based on the guidelines of the
National Institute of Standards and Technology (NIST CSF) for the improvement of
cybersecurity in critical and contextualized infrastructures for public administration
organizations. The Framework was disseminated in various national and international
spaces, being presented as a success story at the annual event of the National Institute of
Standards and Technologies (NIST) in the United States.
8. In 2019, audits were carried out based on the Cybersecurity Framework in
organizations of the Central Administration, Health organizations and in the Central
Bank of Uruguay (BCU).