The geopolitical context signals that the risk of such incidents will only increase in the future, as IT infrastructure is a strategic area of the state. Therefore, we must urgently make the necessary decisions so that the state can timely detect such attacks, stop them, and protect its citizens.
Read more Polish president wants to take the award away from Zelensky
The most important thing is to understand how data moves
Today, the state does not have a clear picture of how different information systems are interconnected, the routes data takes between institutions, and where the biggest security gaps exist. We cannot effectively protect systems whose operation we do not fully understand ourselves.
Therefore, it is necessary to create a complete map of the state’s data flows. It must become the basis for a real IT architecture overhaul. This will provide the necessary understanding of where we can eliminate redundant access and unnecessary data copying. It will also allow identifying systems and processes that currently pose the greatest risk to national security.
We must strengthen specialist leadership
State digitalization requires not isolated projects but clear leadership. To have a real vision and the ability to implement it in the state, we must establish the position of Chief Technology Officer responsible for the state’s technology policy in the Government.
This person would be responsible for the overall direction of the state’s IT architecture. Their task would be to accelerate the IT governance reform started by the Freedom Party in the previous Government – ensuring consistent infrastructure consolidation, updating outdated systems, and migrating systems that do not meet security requirements to a centrally managed environment.
However, one person is not enough. Strong digitalization teams must emerge in ministries and municipalities. Their goal should not be daily computer maintenance but more efficient, safer, and user-friendly public services.
Today, the public sector loses the competition for talent. The problem is not only salaries. High-level specialists are also deterred by excessive bureaucracy, an unpredictable political environment, and a culture where professionalism is too often unappreciated.
If we want a strong digital state, we must start competing for the best people. This means competitive pay policies, greater work flexibility, and serious investments in the technological competencies of state institutions.
Only by attracting strong specialists can we fundamentally solve the long-standing problems of state digitalization.
A strong IT system is not a one-time project
State IT systems are often created on a project basis – with European funds or one-time investments. After launching the system, it is not always clear what the further maintenance process will be and how it will be financed.
This approach must change because it is incompatible with modern IT management practices. Critical state infrastructure cannot be created and forgotten. Systems must be continuously maintained, tested, protected, and improved because threats change faster than many public sector processes.
Data must not be handed over freely
The crisis at the Register Center revealed a dangerous gap in the management of state systems. Critical infrastructure and state-protected data cannot be accessed just by entering a username and password.
Therefore, all systems with access to sensitive data must implement multi-factor authentication. Systems without such protection must be urgently reviewed and, if necessary, temporarily restricted until secure access is ensured.
Another important problem is that data is too widely accessible to people and institutions. It is wrong to think that if someone has logged into an information system, they can automatically be trusted.
Institutions and employees should only see the data they actually need for work, not have automatic access to entire registers or data sets.
Painful lessons must turn into change
The distrust that the state creates by failing to protect people’s data will cost more than the investments needed to solve these problems.
Lithuania has talents with experience in the largest international technology projects. Finally, we must start seriously valuing these capabilities and involving them in state modernization.
Today, the most important question should not be whom to dismiss, but whom and how we must invite to build a stronger and safer state.
Read more TS-LKD leader on data theft from RC: a serious situation from the national security perspective
