• Description
  • Programmes
  • Contact

Sectors: Innovation, Justice - Security, New technologies, Telecommunications

Beneficiaries: Corporations, International Organisation

Regions: European Economic Area, European Union

Category: Call for proposals

References:

To view this information, please connect.

Amount:

To view this information, please connect.

Linkedin:

WE Funding – CEF-T – Support…
Funds for: Supporting the enhancement of cybersecurity capabilities of the EU
Main beneficiaries: international organisations, Joint Undertakings, public or private undertakings

Responsible: European Commission

Useful:

To view this information, please connect.

Contact:

To view this information, please connect.

Advice:

To view this information, please connect.

Amorce:

Funds for: Supporting the enhancement of cybersecurity capabilities of the EU
Main beneficiaries: international organisations, Joint Undertakings, public or private undertakings

Priorities and funded actions:

Objectives 
* Cooperation among designated national CSIRTs (Computer Security Incident Response Teams) for the joint use of MeliCERTes;
* Support for identified Operators of Essential Services (OES) for capability development and for the set-up of Information Sharing and Analysis Centres (ISACs);
* Support to National Competent Authorities (NCAs) and Single Points of Contact (SPOCs) to undertake the liaison, regulation and enforcement obligations set out in the NIS Directive;
* Trans-European cooperation for effective joint cybersecurity operations and to build mutual trust/confidence;
* Support to a common level of maturity in cybersecurity certification

Priorities
* To support the enhancement of cybersecurity capabilities of the EU;
* To improve operational cyber security capabilities for all relevant actors under the NIS Directive

Among financed actions
* Objective 1
– Complement the functionality of the MeliCERTes facility to enhance swift and effective cross-border cooperation between different national CSIRTs;
– Trust-building activities to enhance cross-border cooperation e.g. organisation of joint cyber exercises or knowledge sharing;
– Only if a national CSIRT has not received funding for CSIRTs under the CEF Telecom Cybersecurity Calls of 2016, 2017, or 2018, its proposal may also address activities for improving its cyber capabilities

* Objective 2
– Improving internal capabilities to meet security and reporting requirements (risk assessments, penetration testing, audit, etc.);
– setting-up a national or European level ISAC to enhance the cybersecurity preparedness of OES through effective information sharing and improved situational awareness

* Objective 3
– Build up in-house capabilities to undertake effectively the liaison, regulation, and enforcement obligations set out in the NIS Directive (training and upskilling staff to undertake information security audits, facilitating interaction with NCAs and with other Member States);
– Structured interaction between NCAs and SPOCs and OESs and DSPs (consultation and stakeholder engagement)

* Objective 4
– Further development and implementation of the operational layer of the European Commission Recommendation on Coordinated Response to Large Scale Cybersecurity Incidents and Crises e.g. through cyber-exercises;
– Secure information exchange of cybersecurity risks, threats, vulnerabilities and incidents;
– Joint awareness raising initiatives for the public and industries;
– Joint cyber rapid response, hybrid threat monitoring, mutual assistance initiatives

* Objective 5
– Building up internal capabilities to undertake effectively the certification obligations of national authorities in charge of cybersecurity certification, as set out in the EU Cybersecurity Act (training and upskilling staff to develop their own training capabilities);
– Increasing operational capabilities for certification through acquisition and interoperability of relevant equipment and infrastructure (equipment to test IT systems such as pentesting, IT support to facilitate documentation review);
– Exchange of best practices, exchange of relevant information related to certification, and peer support related to cybersecurity certification e.g. on technical issues related to carrying out audits of conformity assessment bodies

Additional information
* This call for proposals is an open call for proposals

* Initial duration of the action: 3 years

* Eligibility:
– Be a specific type of structure as: international organisations, Joint Undertakings, or public or private undertakings or bodies established in Member States;
– European Free Trade Association (EFTA) countries which are members of the European Economic Area (EEA) may participate in the call for proposals;
– Where necessary to achieve the objectives of a given project of common interest and where duly motivated, third countries and entities established in third countries may participate in actions contributing to the projects of common interest.

– Objective 1: Proposals submitted under this priority must be submitted by a consortium of at least two national CSIRTs, located in at least two different MS, designated by a Member State as required by the NIS Directive;
– Objective 2: Proposals submitted under this Objective must include at least one OES, as identified in line with the NIS Directive;
– Objective 3: Proposals submitted under this Objective must include at least one NCA or SPOC
– Objective 4: Proposals submitted under this Objective must be submitted by a consortium of at least two national public bodies/institutions entrusted with national level cybersecurity and located in at least 2 different MS
– Objective 5: Proposals submitted under this Objective must include at least one entity that that has primary responsibility for cybersecurity certification at the national level. In the case of multi-applicant proposals, the applying entities must be located in at least two different Member States