A Request to Parliament to Retain Skilled Cybersecurity Experts

Ali Mohammad Norouzizadeh, speaking at a meeting of the National Security and Foreign Policy Committee of Iran’s Parliament, stated that the Information Security Technology Development Headquarters (AFTA) has submitted a proposal to the Administrative and Employment Affairs Organization to exclude the determination and allocation of salaries for cybersecurity specialists from standard public-sector wage regulations. This measure aims to provide sufficient financial incentives and bring the salaries of cybersecurity personnel in government institutions closer to those in the private sector.

The Head of the Strategic Center for Information Security under the Office of the President said that improper system configuration, human negligence, and violations of cybersecurity policies are among the main causes of cyber incidents. He stressed that legal action must be taken against managers who have failed to fulfill their duties despite existing regulations and directives issued by the Strategic AFTA Center.

He added that the Strategic AFTA Center, as the national authority responsible for guiding the security of the country’s information and communications infrastructure, has launched an emergency plan in 2025 (1404) to enhance the cybersecurity level of critical infrastructure organizations. The plan includes effective data backup and system configuration measures, as well as proposing immediate alternative plans for organizations facing cyber incidents.

According to Norouzizadeh, reducing dependence on foreign cybersecurity products and replacing them with domestically produced solutions is essential to counter cyber dominance by hostile actors.

He noted that from the beginning of the current year through January, 827 AFTA licenses have been issued to companies seeking to operate in cybersecurity services and product development.

Norouzizadeh called on members of Parliament’s National Security and Foreign Policy Committee to approve the necessary funding to strengthen cybersecurity across the country’s critical infrastructure. He emphasized that, under paragraph (b) of Note (6) of the 2025 national budget law, funding should be allocated only to projects approved by the country’s cybersecurity coordination authorities.

He also highlighted ongoing and planned initiatives, including the introduction of new services to the AFTA service portfolio, such as cyber insurance and security operators, the establishment of cloud security platforms, and support for cloud security services alongside increased regulatory oversight.

Additionally, he outlined future plans to establish and launch national Threat Intelligence (CTI), Managed Detection and Response (MDR), and Information Sharing and Analysis Centers (ISAC).

The head of the Strategic AFTA Center concluded by stating that the organization is determined to create a network of specialized laboratories to support domestic cybersecurity product developers and to establish a venture capital fund to encourage and support private-sector investment in Iran’s domestic cybersecurity industry./ ISNA