BETA


2023/0109(COD) Measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents

Progress: Awaiting Council's 1st reading position

RoleCommitteeRapporteurShadows
Lead ITRE GÁLVEZ Lina (icon: S&D S&D) NIEBLER Angelika (icon: EPP EPP), GROOTHUIS Bart (icon: Renew Renew), NIINISTÖ Ville (icon: Verts/ALE Verts/ALE), TOŠENOVSKÝ Evžen (icon: ECR ECR)
Committee Opinion AFET TUDORACHE Dragoş (icon: Renew Renew) Witold Jan WASZCZYKOWSKI (icon: ECR ECR), Attila ARA-KOVÁCS (icon: S&D S&D)
Committee Opinion BUDG
Committee Opinion CONT
Committee Opinion IMCO
Committee Opinion TRAN FALCĂ Gheorghe (icon: EPP EPP) Nicola DANTI (icon: RE RE), Josianne CUTAJAR (icon: S&D S&D), Anne-Sophie PELLETIER (icon: GUE/NGL GUE/NGL)
Committee Opinion LIBE
Lead committee dossier:
Legal Basis:
TFEU 173-p3, TFEU 322-p1

Events

2024/08/08
   EC - Commission response to text adopted in plenary
Documents
2024/04/24
   EP - Results of vote in Parliament
2024/04/24
   EP - Decision by Parliament, 1st reading
Details

The European Parliament adopted by 470 votes to 23, with 90 abstentions, a legislative resolution on the proposal for a regulation of the European Parliament and of the Council laying down measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents.

The European Parliament’s position adopted at first reading under the ordinary legislative procedure amends the proposal as follows:

Subject-matter and objectives

The proposed Regulation lays down measures to strengthen capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents , in particular through the following actions:

- the establishment of a pan-European network of Cyber Hubs (‘European Cybersecurity Alert System’) to build and enhance coordinated detection and common situational awareness capabilities;

- the establishment of a Cybersecurity Emergency Mechanism to support Member States and other users in preparing for, responding to, mitigating the impact of and initiating recovery from significant, large-scale and large-scale equivalent cybersecurity incidents;

- the establishment of a European Cybersecurity Incident Review Mechanism to review and assess significant or large-scale incidents.

This Regulation pursues the general objectives of reinforcing the competitive position of industry and service sectors in the Union across the digital economy, including microenterprises and small and medium-sized enterprises as well as start-ups, and of contributing to the Union’s technological sovereignty and open strategic autonomy in the area of cybersecurity, including by boosting innovation in the Digital Single Market. It pursues those objectives by strengthening solidarity at Union level , reinforcing the cybersecurity ecosystem, enhancing Member States' cyber resilience and developing the skills, know-how, abilities and competencies of the workforce in relation to cybersecurity.

This Regulation is without prejudice to the Member States’ essential State functions, including ensuring the territorial integrity of the State, maintaining law and order and safeguarding national security. In particular, national security remains the sole responsibility of each Member State.

Establishment of the European Cybersecurity Alert System

A pan-European network of infrastructure that consists of National Cyber Hubs and Cross-Border Cyber Hubs joining on a voluntary basis, the European Cybersecurity Alert System should be established to support the development of advanced capabilities for the Union to enhance detection, analysis and data processing capabilities in relation to cyber threats and the prevention of incidents in the Union.

Where a Member State decides to participate in the European Cybersecurity Alert System, it should designate or, where applicable, establish a National Cyber Hub.

National Cyber Hubs may cooperate with private sector entities to exchange relevant data and information for the purpose of detecting and preventing cyber threats and incidents, including with sectoral and cross-sectoral communities of essential and important entities. Where appropriate and in accordance with national and Union law, the information requested or received by National Cyber Hubs may include telemetry, sensor and logging data.

Cross-Border Cyber Hubs

Where at least three Member States are committed to ensuring that their National Cyber Hubs work together to coordinate their cyber-detection and threat monitoring activities, those Member States may establish a Hosting Consortium.

A Cross-Border Cyber Hub should be a multi-country platform established by a written consortium agreement. It should bring together in a coordinated network structure the National Cyber Hubs of the Hosting Consortium’s Member States. It should be designed to enhance the monitoring, detection and analysis of cyber threats, to prevent incidents and to support the production of cyber threat intelligence, notably through the exchange of relevant and, where appropriate, anonymised data and information, as well as through the sharing of state-of-the-art tools and jointly developing cyber detection, analysis and prevention and protection capabilities in a trusted environment.

Emergency mechanism

A Cybersecurity Emergency Mechanism should be established to support improvement of the Union’s resilience to cyber threats and prepare for and mitigate, in a spirit of solidarity, the short-term impact of significant, large-scale and large-scale-equivalent cybersecurity incidents.

The Cybersecurity Emergency Mechanism should support the following types of actions: (i) preparedness actions, namely the coordinated preparedness testing of entities operating in sectors of high criticality across the Union ; (ii) other preparedness actions for entities operating in sectors of high criticality and other critical sectors; (iii) actions supporting response to and initiating recovery from significant, large-scale and large-scale-equivalent cybersecurity incidents, to be provided by trusted managed security service providers participating in the EU Cybersecurity Reserve; (iv) mutual assistance actions granted in the form of grants and under the conditions defined in the relevant work programmes referred to in the Digital Europe Programme.

Establishment of the EU Cybersecurity Reserve

An EU Cybersecurity Reserve should be established, in order to assist, upon request, in responding or providing support for responding to significant, large-scale, or large-scale-equivalent cybersecurity incidents, and initiating recovery from such incidents.

ENISA should prepare, at least every two years, a mapping of the services needed by the users. ENISA should prepare a similar mapping, after informing the Council and consulting EU-CyCLONe and the Commission. A response should be transmitted to the users without delay and in any event no later than 48 hours from the submission of the request to ensure effectiveness of the support action. The contracting authority should inform the Council and the Commission of the results of the process.

A third country associated with the Digital Europe Programme should apply for support from the EU Cybersecurity Pool where the agreement by which it is associated with the Digital Europe Programme provides for its participation in the Pool.

Evaluation and review

By two years from the date of application of this Regulation and at least every four years thereafter, the Commission should carry out an evaluation of the functioning of the measures laid down in this Regulation and should submit a report to the European Parliament and to the Council.

Documents
2024/03/21
   CSL - Coreper letter confirming interinstitutional agreement
2024/03/20
   EP - Text agreed during interinstitutional negotiations
Documents
2024/03/20
   EP - Approval in committee of the text agreed at 1st reading interinstitutional negotiations
Documents
2024/01/04
   FR_SENATE - Contribution
Documents
2023/12/13
   EP - Committee decision to enter into interinstitutional negotiations confirmed by plenary (Rule 71)
2023/12/11
   EP - Committee decision to enter into interinstitutional negotiations announced in plenary (Rule 71)
2023/12/08
   EP - Committee report tabled for plenary, 1st reading
Details

The Committee on Industry, Research and Energy adopted the report by Lina GÁLVEZ MUÑOZ (S&D, ES) on the proposal for a regulation of the European Parliament and of the Council laying down measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents.

The committee responsible recommended that the European Parliament's position adopted at first reading under the ordinary legislative procedure should amend the proposal as follows:

Coordinated governance

Members stressed that close and coordinated cooperation is needed between the public sector, the private sector, academia, civil society and the media. Moreover, the Union's response needs to be coordinated with international institutions as well as trusted and like-minded international partners. To ensure cooperation with trusted and like-minded international partners and protection against systemic rivals, entities established in third countries that are not parties to the WTO Agreement on Government Procurement (GPA) should not be allowed to participate in procurement under this Regulation.

Cybersecurity reserve

Regarding the new cybersecurity reserve, Members believe it has the potential of developing industrial capacities in the EU, including for SMEs , with investments in research and innovation to develop state of the art technologies, such as cloud and artificial intelligence technologies. In addition, the report proposed to maintain the participation of the industry, enhance the criteria and trust of their participation (i.e. connecting their participation to a national or local company) by clarifying the criteria and the definition of technological sovereignty and to guarantee a balance between non-EU and EU actors. In addition, Members proposed for the Cyber Emergency Mechanism a certification scheme to be used for private providers to build a longstanding and trusted partnership.

To support the establishment of the EU Cybersecurity Reserve, the Commission could consider requesting ENISA to prepare a candidate certification scheme for managed security services in the areas covered by the Cybersecurity Emergency Mechanism. To fulfil the additional tasks deriving from this provision, ENISA should receive adequate, additional funding .

Funding

Considering geopolitical developments and the growing cyber threat landscape and in order to ensure continuity and further development of the measures laid down in this Regulation beyond 2027, particularly the European Cyber Shield and the Cybersecurity Emergency Mechanism, it is necessary to ensure a specific budget line in the multiannual financial framework for the period 2028-2034. According to the report, Member States should endeavour to commit themselves to supporting all necessary measures to reduce cyber threats and incidents throughout the Union and to strengthen solidarity.

Strengthening R&I in cybersecurity

The amended text called for enhanced research and innovation (R&I) in cybersecurity to increase the resilience and the open strategic autonomy of the Union. Similarly, it is important to create synergies with R&I programmes and with existing instruments and institutions and to strengthen cooperation and coordination among the different stakeholders, including the private sector, civil society, academia, Member States, the Commission and ENISA.

Evaluation and Review

The amended text stated that by two years from the date of application of this Regulation and every two years thereafter, the Commission should carry out an evaluation concerning, inter alia : (i) both the positive and the negative working of the Cybersecurity Emergency Mechanism; (ii) the contribution of this Regulation to reinforce the Union’s resilience and open strategic autonomy, to improve the competitiveness of the relevant industry sectors, microenterprises, SMEs including start-ups, and the development of cybersecurity skills in the Union; (iii) the use and added value of the EU Cybersecurity Reserve.

Documents
2023/12/07
   EP - Vote in committee, 1st reading
2023/12/07
   EP - Committee decision to open interinstitutional negotiations with report adopted in committee
2023/11/29
   CofR - Committee of the Regions: opinion
Documents
2023/10/27
   EP - Committee opinion
Documents
2023/10/25
   EP - Committee opinion
Documents
2023/09/22
   EP - Amendments tabled in committee
Documents
2023/09/18
   PT_PARLIAMENT - Contribution
Documents
2023/09/04
   EP - Committee draft report
Documents
2023/08/01
   CZ_SENATE - Contribution
Documents
2023/07/13
   ESC - Economic and Social Committee: opinion, report
Documents
2023/07/07
   EP - FALCĂ Gheorghe (EPP) appointed as rapporteur in TRAN
2023/06/29
   CZ_CHAMBER - Contribution
Documents
2023/06/16
   EP - TUDORACHE Dragoş (Renew) appointed as rapporteur in AFET
2023/06/01
   EP - Committee referral announced in Parliament, 1st reading
2023/05/02
   EP - GÁLVEZ Lina (S&D) appointed as rapporteur in ITRE
2023/04/18
   EC - Legislative proposal published
Details

PURPOSE: to lay down measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents (EU Cyber solidarity act).

PROPOSED ACT: Regulation of the European Parliament and of the Council.

ROLE OF THE EUROPEAN PARLIAMENT: the European Parliament decides in accordance with the ordinary legislative procedure and on an equal footing with the Council.

BACKGROUND: the magnitude, frequency and impact of cybersecurity incidents are increasing, including supply chain attacks aiming at cyberespionage, ransomware or disruption. They represent a major threat to the functioning of network and information systems. In view of the fast-evolving threat landscape, the threat of possible large-scale incidents causing significant disruption or damage to critical infrastructures demands heightened preparedness at all levels of the Union’s cybersecurity framework. That threat goes beyond Russia’s military aggression on Ukraine and is likely to persist given the multiplicity of state-aligned, criminal and hacktivist actors involved in current geopolitical tensions.

CONTENT: with this proposal, the Commission aims to set up Cyber Solidarity Act which establishes EU capabilities to make Europe more resilient and reactive in front of cyber threats, while strengthening existing cooperation mechanism. It will contribute to ensuring a safe and secure digital landscape for citizens and businesses and to protecting critical entities and essential services, such as hospitals and public utilities.

This Regulation lays down measures to strengthen capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents, in particular through the following actions:

European Cyber Shield

An interconnected pan-European infrastructure of Security Operations Centres (European Cyber Shield) will be established to develop advanced capabilities for the Union to detect, analyse and process data on cyber threats and incidents in the Union. It will be composed of Security Operations Centres (SOCs) across the EU, brought together in several multi-country SOC platforms, built with support from the Digital Europe Programme (DEP) to supplement national funding. The Cyber Shield will be tasked with improving the detection, analysis and response to cyber threats. These SOCs will use advanced technology such as Artificial Intelligence (AI) and data analytics to detect and share warnings on such threats with authorities across borders. They will allow for a more timely and efficient response to major threats.

Cyber Emergency Mechanism

The Cyber Emergency Mechanism will improve the Union’s resilience to major cybersecurity threats and prepare for and mitigate, in a spirit of solidarity, the short-term impact of significant and large-scale cybersecurity incidents. It provides for actions to support preparedness, including coordinated testing of entities operating in highly critical sectors, response to and immediate recovery from significant or large-scale cybersecurity incidents or mitigate significant cyber threats and mutual assistance actions.

Also set to be created is an EU Cybersecurity Reserve made up of trusted and certified private companies ready to respond to major incidents.

European Cybersecurity Incident Review Mechanism

The proposed Regulation would also establish the Cybersecurity Incident Review Mechanism to assess and review specific cybersecurity incidents. At the request of the Commission or of national authorities (the EU-CyCLONe or the CSIRTs network), the EU Cybersecurity Agency (ENISA) will be responsible for the review of specific significant or large-scale cybersecurity incident and should deliver a report that includes lessons learned, and where appropriate, recommendations to improve Union’s cyber response.

Budgetary implications

The EU Cybersecurity Shield and the Cybersecurity Emergency Mechanism of this Regulation will be supported by funding under Strategic Objective ‘Cybersecurity’ of Digital Europe Programme (DEP).

The total budget includes an increase of EUR 100 million that this Regulation proposes to re-allocate from other Strategic Objectives of DEP. This will bring the new total amount available for Cybersecurity actions under DEP to EUR 842.8 million. Part of the additional EUR 100 million will reinforce the budget managed by the ECCC to implement actions on SOCs and preparedness as part of their Work Programme(s). Moreover, the additional funding will serve to support the establishment of the EU Cybersecurity Reserve.

It complements the budget already foreseen for similar actions in the main DEP and Cybersecurity DEP WP from the period 2023-2027 which could bring the total to 551 million for 2023-2027, while 115 million were dedicated already in the form of pilots for 2021-2022. Including Member States contributions, the overall budget could amount up to EUR 1.109 billion.

Documents

Votes

A9-0426/2023 – Lina Gálvez Muñoz – Provisional agreement – Am 2 #

2024/04/24 Outcome: +: 470, 0: 86, -: 23
FR DE IT PL ES RO SE BE HU CZ AT BG HR SK NL FI DK EL PT LT SI LV EE IE LU MT
Total
72
81
45
43
54
21
20
21
15
21
17
13
11
12
28
13
11
12
17
9
7
8
7
11
6
4
icon: PPE PPE
146

Hungary PPE

1

Denmark PPE

For (1)

1

Slovenia PPE

3

Estonia PPE

For (1)

1

Luxembourg PPE

2

Malta PPE

For (1)

1
icon: S&D S&D
111

Romania S&D

2

Belgium S&D

2

Czechia S&D

For (1)

1

Bulgaria S&D

2

Slovakia S&D

For (1)

1

Denmark S&D

2

Greece S&D

1

Lithuania S&D

2

Slovenia S&D

2

Latvia S&D

2

Estonia S&D

2

Luxembourg S&D

For (1)

1
icon: Renew Renew
93

Poland Renew

1
3

Hungary Renew

For (1)

1

Austria Renew

For (1)

1

Bulgaria Renew

2

Croatia Renew

For (1)

1

Finland Renew

3

Greece Renew

1

Slovenia Renew

2

Latvia Renew

For (1)

1

Estonia Renew

3

Ireland Renew

2

Luxembourg Renew

2
icon: ECR ECR
57

France ECR

For (1)

1

Germany ECR

1

Romania ECR

1

Bulgaria ECR

2

Croatia ECR

1

Slovakia ECR

Abstain (1)

1

Netherlands ECR

Abstain (1)

5

Finland ECR

1

Greece ECR

Abstain (1)

1

Lithuania ECR

1

Latvia ECR

For (1)

1
icon: ID ID
45

Czechia ID

For (1)

1

Austria ID

2

Denmark ID

Abstain (1)

1

Estonia ID

Abstain (1)

1
icon: NI NI
34

Germany NI

For (1)

Abstain (1)

2

Spain NI

Abstain (1)

1

Romania NI

For (1)

1

Belgium NI

For (1)

1

Czechia NI

Against (1)

1

Netherlands NI

Against (1)

1

Greece NI

Against (1)

3

Latvia NI

Against (1)

1
icon: Verts/ALE Verts/ALE
66

Italy Verts/ALE

2

Poland Verts/ALE

Abstain (1)

1

Spain Verts/ALE

3

Sweden Verts/ALE

3

Belgium Verts/ALE

3

Czechia Verts/ALE

3

Austria Verts/ALE

3

Netherlands Verts/ALE

3

Finland Verts/ALE

3

Denmark Verts/ALE

For (1)

1

Portugal Verts/ALE

Abstain (1)

1

Lithuania Verts/ALE

2

Ireland Verts/ALE

2

Luxembourg Verts/ALE

Abstain (1)

1
icon: The Left The Left
27

Germany The Left

2

Belgium The Left

Against (1)

1

Czechia The Left

Against (1)

1

Finland The Left

For (1)

1

Denmark The Left

1

Greece The Left

2

Ireland The Left

For (1)

3
AmendmentsDossier
171 2023/0109(COD)
2023/09/22 ITRE 171 amendments...
source: 753.628

History

(these mark the time of scraping, not the official date of the change)

docs/8/docs/0/url
Old
/oeil/spdoc.do?i=60910&j=0&l=en
New
https://data.europarl.europa.eu/distribution/doc/SP-2024-394-TA-9-2024-0355_en.docx
docs/8/docs/0/url
Old
/oeil/spdoc.do?i=60910&j=0&l=en
New
https://data.europarl.europa.eu/distribution/doc/SP-2024-394-TA-9-2024-0355_en.docx
docs/8/docs/0/url
Old
/oeil/spdoc.do?i=60910&j=0&l=en
New
https://data.europarl.europa.eu/distribution/doc/SP-2024-394-TA-9-2024-0355_en.docx
docs/8/docs/0/url
Old
/oeil/spdoc.do?i=60910&j=0&l=en
New
https://data.europarl.europa.eu/distribution/doc/SP-2024-394-TA-9-2024-0355_en.docx
docs/8/docs/0/url
Old
/oeil/spdoc.do?i=60910&j=0&l=en
New
https://data.europarl.europa.eu/distribution/doc/SP-2024-394-TA-9-2024-0355_en.docx
docs/8/docs/0/url
Old
/oeil/spdoc.do?i=60910&j=0&l=en
New
https://data.europarl.europa.eu/distribution/doc/SP-2024-394-TA-9-2024-0355_en.docx
docs/8/docs/0/url
Old
/oeil/spdoc.do?i=60910&j=0&l=en
New
https://data.europarl.europa.eu/distribution/doc/SP-2024-394-TA-9-2024-0355_en.docx
docs/8/docs/0/url
Old
/oeil/spdoc.do?i=60910&j=0&l=en
New
https://data.europarl.europa.eu/distribution/doc/SP-2024-394-TA-9-2024-0355_en.docx
docs/8/docs/0/url
Old
/oeil/spdoc.do?i=60910&j=0&l=en
New
https://data.europarl.europa.eu/distribution/doc/SP-2024-394-TA-9-2024-0355_en.docx
docs/8/docs/0/url
Old
/oeil/spdoc.do?i=60910&j=0&l=en
New
https://data.europarl.europa.eu/distribution/doc/SP-2024-394-TA-9-2024-0355_en.docx
docs/8/docs/0/url
Old
/oeil/spdoc.do?i=60910&j=0&l=en
New
https://data.europarl.europa.eu/distribution/doc/SP-2024-394-TA-9-2024-0355_en.docx
docs/8/docs/0/url
Old
/oeil/spdoc.do?i=60910&j=0&l=en
New
https://data.europarl.europa.eu/distribution/doc/SP-2024-394-TA-9-2024-0355_en.docx
docs/8/docs/0/url
Old
/oeil/spdoc.do?i=60910&j=0&l=en
New
https://data.europarl.europa.eu/distribution/doc/SP-2024-394-TA-9-2024-0355_en.docx
docs/8/docs/0/url
Old
/oeil/spdoc.do?i=60910&j=0&l=en
New
nulldistribution/doc/SP-2024-394-TA-9-2024-0355_en.docx
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
docs/8
date
2024-08-08T00:00:00
docs
url: /oeil/spdoc.do?i=60910&j=0&l=en title: SP(2024)394
type
Commission response to text adopted in plenary
body
EC
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
events/8
date
2024-04-24T00:00:00
type
Results of vote in Parliament
body
EP
docs
url: https://oeil.secure.europarl.europa.eu/oeil/popups/sda.do?id=60910&l=en title: Results of vote in Parliament
committees/0/rapporteur/0/name
Old
GÁLVEZ MUÑOZ Lina
New
GÁLVEZ Lina
docs/8
date
2024-04-24T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/TA-9-2024-0355_EN.html title: T9-0355/2024
type
Text adopted by Parliament, 1st reading/single reading
body
EP
events/8/summary
  • The European Parliament adopted by 470 votes to 23, with 90 abstentions, a legislative resolution on the proposal for a regulation of the European Parliament and of the Council laying down measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents.
  • The European Parliament’s position adopted at first reading under the ordinary legislative procedure amends the proposal as follows:
  • Subject-matter and objectives
  • The proposed Regulation lays down measures to strengthen capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents , in particular through the following actions:
  • - the establishment of a pan-European network of Cyber Hubs (‘European Cybersecurity Alert System’) to build and enhance coordinated detection and common situational awareness capabilities;
  • - the establishment of a Cybersecurity Emergency Mechanism to support Member States and other users in preparing for, responding to, mitigating the impact of and initiating recovery from significant, large-scale and large-scale equivalent cybersecurity incidents;
  • - the establishment of a European Cybersecurity Incident Review Mechanism to review and assess significant or large-scale incidents.
  • This Regulation pursues the general objectives of reinforcing the competitive position of industry and service sectors in the Union across the digital economy, including microenterprises and small and medium-sized enterprises as well as start-ups, and of contributing to the Union’s technological sovereignty and open strategic autonomy in the area of cybersecurity, including by boosting innovation in the Digital Single Market. It pursues those objectives by strengthening solidarity at Union level , reinforcing the cybersecurity ecosystem, enhancing Member States' cyber resilience and developing the skills, know-how, abilities and competencies of the workforce in relation to cybersecurity.
  • This Regulation is without prejudice to the Member States’ essential State functions, including ensuring the territorial integrity of the State, maintaining law and order and safeguarding national security. In particular, national security remains the sole responsibility of each Member State.
  • Establishment of the European Cybersecurity Alert System
  • A pan-European network of infrastructure that consists of National Cyber Hubs and Cross-Border Cyber Hubs joining on a voluntary basis, the European Cybersecurity Alert System should be established to support the development of advanced capabilities for the Union to enhance detection, analysis and data processing capabilities in relation to cyber threats and the prevention of incidents in the Union.
  • Where a Member State decides to participate in the European Cybersecurity Alert System, it should designate or, where applicable, establish a National Cyber Hub.
  • National Cyber Hubs may cooperate with private sector entities to exchange relevant data and information for the purpose of detecting and preventing cyber threats and incidents, including with sectoral and cross-sectoral communities of essential and important entities. Where appropriate and in accordance with national and Union law, the information requested or received by National Cyber Hubs may include telemetry, sensor and logging data.
  • Cross-Border Cyber Hubs
  • Where at least three Member States are committed to ensuring that their National Cyber Hubs work together to coordinate their cyber-detection and threat monitoring activities, those Member States may establish a Hosting Consortium.
  • A Cross-Border Cyber Hub should be a multi-country platform established by a written consortium agreement. It should bring together in a coordinated network structure the National Cyber Hubs of the Hosting Consortium’s Member States. It should be designed to enhance the monitoring, detection and analysis of cyber threats, to prevent incidents and to support the production of cyber threat intelligence, notably through the exchange of relevant and, where appropriate, anonymised data and information, as well as through the sharing of state-of-the-art tools and jointly developing cyber detection, analysis and prevention and protection capabilities in a trusted environment.
  • Emergency mechanism
  • A Cybersecurity Emergency Mechanism should be established to support improvement of the Union’s resilience to cyber threats and prepare for and mitigate, in a spirit of solidarity, the short-term impact of significant, large-scale and large-scale-equivalent cybersecurity incidents.
  • The Cybersecurity Emergency Mechanism should support the following types of actions: (i) preparedness actions, namely the coordinated preparedness testing of entities operating in sectors of high criticality across the Union ; (ii) other preparedness actions for entities operating in sectors of high criticality and other critical sectors; (iii) actions supporting response to and initiating recovery from significant, large-scale and large-scale-equivalent cybersecurity incidents, to be provided by trusted managed security service providers participating in the EU Cybersecurity Reserve; (iv) mutual assistance actions granted in the form of grants and under the conditions defined in the relevant work programmes referred to in the Digital Europe Programme.
  • Establishment of the EU Cybersecurity Reserve
  • An EU Cybersecurity Reserve should be established, in order to assist, upon request, in responding or providing support for responding to significant, large-scale, or large-scale-equivalent cybersecurity incidents, and initiating recovery from such incidents.
  • ENISA should prepare, at least every two years, a mapping of the services needed by the users. ENISA should prepare a similar mapping, after informing the Council and consulting EU-CyCLONe and the Commission. A response should be transmitted to the users without delay and in any event no later than 48 hours from the submission of the request to ensure effectiveness of the support action. The contracting authority should inform the Council and the Commission of the results of the process.
  • A third country associated with the Digital Europe Programme should apply for support from the EU Cybersecurity Pool where the agreement by which it is associated with the Digital Europe Programme provides for its participation in the Pool.
  • Evaluation and review
  • By two years from the date of application of this Regulation and at least every four years thereafter, the Commission should carry out an evaluation of the functioning of the measures laid down in this Regulation and should submit a report to the European Parliament and to the Council.
docs/8
date
2024-04-24T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/TA-9-2024-0355_EN.html title: T9-0355/2024
type
Text adopted by Parliament, 1st reading/single reading
body
EP
events/8/summary
  • The European Parliament adopted by 470 votes to 23, with 90 abstentions, a legislative resolution on the proposal for a regulation of the European Parliament and of the Council laying down measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents.
  • The European Parliament’s position adopted at first reading under the ordinary legislative procedure amends the proposal as follows:
  • Subject-matter and objectives
  • The proposed Regulation lays down measures to strengthen capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents , in particular through the following actions:
  • - the establishment of a pan-European network of Cyber Hubs (‘European Cybersecurity Alert System’) to build and enhance coordinated detection and common situational awareness capabilities;
  • - the establishment of a Cybersecurity Emergency Mechanism to support Member States and other users in preparing for, responding to, mitigating the impact of and initiating recovery from significant, large-scale and large-scale equivalent cybersecurity incidents;
  • - the establishment of a European Cybersecurity Incident Review Mechanism to review and assess significant or large-scale incidents.
  • This Regulation pursues the general objectives of reinforcing the competitive position of industry and service sectors in the Union across the digital economy, including microenterprises and small and medium-sized enterprises as well as start-ups, and of contributing to the Union’s technological sovereignty and open strategic autonomy in the area of cybersecurity, including by boosting innovation in the Digital Single Market. It pursues those objectives by strengthening solidarity at Union level , reinforcing the cybersecurity ecosystem, enhancing Member States' cyber resilience and developing the skills, know-how, abilities and competencies of the workforce in relation to cybersecurity.
  • This Regulation is without prejudice to the Member States’ essential State functions, including ensuring the territorial integrity of the State, maintaining law and order and safeguarding national security. In particular, national security remains the sole responsibility of each Member State.
  • Establishment of the European Cybersecurity Alert System
  • A pan-European network of infrastructure that consists of National Cyber Hubs and Cross-Border Cyber Hubs joining on a voluntary basis, the European Cybersecurity Alert System should be established to support the development of advanced capabilities for the Union to enhance detection, analysis and data processing capabilities in relation to cyber threats and the prevention of incidents in the Union.
  • Where a Member State decides to participate in the European Cybersecurity Alert System, it should designate or, where applicable, establish a National Cyber Hub.
  • National Cyber Hubs may cooperate with private sector entities to exchange relevant data and information for the purpose of detecting and preventing cyber threats and incidents, including with sectoral and cross-sectoral communities of essential and important entities. Where appropriate and in accordance with national and Union law, the information requested or received by National Cyber Hubs may include telemetry, sensor and logging data.
  • Cross-Border Cyber Hubs
  • Where at least three Member States are committed to ensuring that their National Cyber Hubs work together to coordinate their cyber-detection and threat monitoring activities, those Member States may establish a Hosting Consortium.
  • A Cross-Border Cyber Hub should be a multi-country platform established by a written consortium agreement. It should bring together in a coordinated network structure the National Cyber Hubs of the Hosting Consortium’s Member States. It should be designed to enhance the monitoring, detection and analysis of cyber threats, to prevent incidents and to support the production of cyber threat intelligence, notably through the exchange of relevant and, where appropriate, anonymised data and information, as well as through the sharing of state-of-the-art tools and jointly developing cyber detection, analysis and prevention and protection capabilities in a trusted environment.
  • Emergency mechanism
  • A Cybersecurity Emergency Mechanism should be established to support improvement of the Union’s resilience to cyber threats and prepare for and mitigate, in a spirit of solidarity, the short-term impact of significant, large-scale and large-scale-equivalent cybersecurity incidents.
  • The Cybersecurity Emergency Mechanism should support the following types of actions: (i) preparedness actions, namely the coordinated preparedness testing of entities operating in sectors of high criticality across the Union ; (ii) other preparedness actions for entities operating in sectors of high criticality and other critical sectors; (iii) actions supporting response to and initiating recovery from significant, large-scale and large-scale-equivalent cybersecurity incidents, to be provided by trusted managed security service providers participating in the EU Cybersecurity Reserve; (iv) mutual assistance actions granted in the form of grants and under the conditions defined in the relevant work programmes referred to in the Digital Europe Programme.
  • Establishment of the EU Cybersecurity Reserve
  • An EU Cybersecurity Reserve should be established, in order to assist, upon request, in responding or providing support for responding to significant, large-scale, or large-scale-equivalent cybersecurity incidents, and initiating recovery from such incidents.
  • ENISA should prepare, at least every two years, a mapping of the services needed by the users. ENISA should prepare a similar mapping, after informing the Council and consulting EU-CyCLONe and the Commission. A response should be transmitted to the users without delay and in any event no later than 48 hours from the submission of the request to ensure effectiveness of the support action. The contracting authority should inform the Council and the Commission of the results of the process.
  • A third country associated with the Digital Europe Programme should apply for support from the EU Cybersecurity Pool where the agreement by which it is associated with the Digital Europe Programme provides for its participation in the Pool.
  • Evaluation and review
  • By two years from the date of application of this Regulation and at least every four years thereafter, the Commission should carry out an evaluation of the functioning of the measures laid down in this Regulation and should submit a report to the European Parliament and to the Council.
docs/8
date
2024-04-24T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/TA-9-2024-0355_EN.html title: T9-0355/2024
type
Text adopted by Parliament, 1st reading/single reading
body
EP
events/8/summary
  • The European Parliament adopted by 470 votes to 23, with 90 abstentions, a legislative resolution on the proposal for a regulation of the European Parliament and of the Council laying down measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents.
  • The European Parliament’s position adopted at first reading under the ordinary legislative procedure amends the proposal as follows:
  • Subject-matter and objectives
  • The proposed Regulation lays down measures to strengthen capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents , in particular through the following actions:
  • - the establishment of a pan-European network of Cyber Hubs (‘European Cybersecurity Alert System’) to build and enhance coordinated detection and common situational awareness capabilities;
  • - the establishment of a Cybersecurity Emergency Mechanism to support Member States and other users in preparing for, responding to, mitigating the impact of and initiating recovery from significant, large-scale and large-scale equivalent cybersecurity incidents;
  • - the establishment of a European Cybersecurity Incident Review Mechanism to review and assess significant or large-scale incidents.
  • This Regulation pursues the general objectives of reinforcing the competitive position of industry and service sectors in the Union across the digital economy, including microenterprises and small and medium-sized enterprises as well as start-ups, and of contributing to the Union’s technological sovereignty and open strategic autonomy in the area of cybersecurity, including by boosting innovation in the Digital Single Market. It pursues those objectives by strengthening solidarity at Union level , reinforcing the cybersecurity ecosystem, enhancing Member States' cyber resilience and developing the skills, know-how, abilities and competencies of the workforce in relation to cybersecurity.
  • This Regulation is without prejudice to the Member States’ essential State functions, including ensuring the territorial integrity of the State, maintaining law and order and safeguarding national security. In particular, national security remains the sole responsibility of each Member State.
  • Establishment of the European Cybersecurity Alert System
  • A pan-European network of infrastructure that consists of National Cyber Hubs and Cross-Border Cyber Hubs joining on a voluntary basis, the European Cybersecurity Alert System should be established to support the development of advanced capabilities for the Union to enhance detection, analysis and data processing capabilities in relation to cyber threats and the prevention of incidents in the Union.
  • Where a Member State decides to participate in the European Cybersecurity Alert System, it should designate or, where applicable, establish a National Cyber Hub.
  • National Cyber Hubs may cooperate with private sector entities to exchange relevant data and information for the purpose of detecting and preventing cyber threats and incidents, including with sectoral and cross-sectoral communities of essential and important entities. Where appropriate and in accordance with national and Union law, the information requested or received by National Cyber Hubs may include telemetry, sensor and logging data.
  • Cross-Border Cyber Hubs
  • Where at least three Member States are committed to ensuring that their National Cyber Hubs work together to coordinate their cyber-detection and threat monitoring activities, those Member States may establish a Hosting Consortium.
  • A Cross-Border Cyber Hub should be a multi-country platform established by a written consortium agreement. It should bring together in a coordinated network structure the National Cyber Hubs of the Hosting Consortium’s Member States. It should be designed to enhance the monitoring, detection and analysis of cyber threats, to prevent incidents and to support the production of cyber threat intelligence, notably through the exchange of relevant and, where appropriate, anonymised data and information, as well as through the sharing of state-of-the-art tools and jointly developing cyber detection, analysis and prevention and protection capabilities in a trusted environment.
  • Emergency mechanism
  • A Cybersecurity Emergency Mechanism should be established to support improvement of the Union’s resilience to cyber threats and prepare for and mitigate, in a spirit of solidarity, the short-term impact of significant, large-scale and large-scale-equivalent cybersecurity incidents.
  • The Cybersecurity Emergency Mechanism should support the following types of actions: (i) preparedness actions, namely the coordinated preparedness testing of entities operating in sectors of high criticality across the Union ; (ii) other preparedness actions for entities operating in sectors of high criticality and other critical sectors; (iii) actions supporting response to and initiating recovery from significant, large-scale and large-scale-equivalent cybersecurity incidents, to be provided by trusted managed security service providers participating in the EU Cybersecurity Reserve; (iv) mutual assistance actions granted in the form of grants and under the conditions defined in the relevant work programmes referred to in the Digital Europe Programme.
  • Establishment of the EU Cybersecurity Reserve
  • An EU Cybersecurity Reserve should be established, in order to assist, upon request, in responding or providing support for responding to significant, large-scale, or large-scale-equivalent cybersecurity incidents, and initiating recovery from such incidents.
  • ENISA should prepare, at least every two years, a mapping of the services needed by the users. ENISA should prepare a similar mapping, after informing the Council and consulting EU-CyCLONe and the Commission. A response should be transmitted to the users without delay and in any event no later than 48 hours from the submission of the request to ensure effectiveness of the support action. The contracting authority should inform the Council and the Commission of the results of the process.
  • A third country associated with the Digital Europe Programme should apply for support from the EU Cybersecurity Pool where the agreement by which it is associated with the Digital Europe Programme provides for its participation in the Pool.
  • Evaluation and review
  • By two years from the date of application of this Regulation and at least every four years thereafter, the Commission should carry out an evaluation of the functioning of the measures laid down in this Regulation and should submit a report to the European Parliament and to the Council.
docs/8
date
2024-04-24T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/TA-9-2024-0355_EN.html title: T9-0355/2024
type
Text adopted by Parliament, 1st reading/single reading
body
EP
events/8/summary
  • The European Parliament adopted by 470 votes to 23, with 90 abstentions, a legislative resolution on the proposal for a regulation of the European Parliament and of the Council laying down measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents.
  • The European Parliament’s position adopted at first reading under the ordinary legislative procedure amends the proposal as follows:
  • Subject-matter and objectives
  • The proposed Regulation lays down measures to strengthen capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents , in particular through the following actions:
  • - the establishment of a pan-European network of Cyber Hubs (‘European Cybersecurity Alert System’) to build and enhance coordinated detection and common situational awareness capabilities;
  • - the establishment of a Cybersecurity Emergency Mechanism to support Member States and other users in preparing for, responding to, mitigating the impact of and initiating recovery from significant, large-scale and large-scale equivalent cybersecurity incidents;
  • - the establishment of a European Cybersecurity Incident Review Mechanism to review and assess significant or large-scale incidents.
  • This Regulation pursues the general objectives of reinforcing the competitive position of industry and service sectors in the Union across the digital economy, including microenterprises and small and medium-sized enterprises as well as start-ups, and of contributing to the Union’s technological sovereignty and open strategic autonomy in the area of cybersecurity, including by boosting innovation in the Digital Single Market. It pursues those objectives by strengthening solidarity at Union level , reinforcing the cybersecurity ecosystem, enhancing Member States' cyber resilience and developing the skills, know-how, abilities and competencies of the workforce in relation to cybersecurity.
  • This Regulation is without prejudice to the Member States’ essential State functions, including ensuring the territorial integrity of the State, maintaining law and order and safeguarding national security. In particular, national security remains the sole responsibility of each Member State.
  • Establishment of the European Cybersecurity Alert System
  • A pan-European network of infrastructure that consists of National Cyber Hubs and Cross-Border Cyber Hubs joining on a voluntary basis, the European Cybersecurity Alert System should be established to support the development of advanced capabilities for the Union to enhance detection, analysis and data processing capabilities in relation to cyber threats and the prevention of incidents in the Union.
  • Where a Member State decides to participate in the European Cybersecurity Alert System, it should designate or, where applicable, establish a National Cyber Hub.
  • National Cyber Hubs may cooperate with private sector entities to exchange relevant data and information for the purpose of detecting and preventing cyber threats and incidents, including with sectoral and cross-sectoral communities of essential and important entities. Where appropriate and in accordance with national and Union law, the information requested or received by National Cyber Hubs may include telemetry, sensor and logging data.
  • Cross-Border Cyber Hubs
  • Where at least three Member States are committed to ensuring that their National Cyber Hubs work together to coordinate their cyber-detection and threat monitoring activities, those Member States may establish a Hosting Consortium.
  • A Cross-Border Cyber Hub should be a multi-country platform established by a written consortium agreement. It should bring together in a coordinated network structure the National Cyber Hubs of the Hosting Consortium’s Member States. It should be designed to enhance the monitoring, detection and analysis of cyber threats, to prevent incidents and to support the production of cyber threat intelligence, notably through the exchange of relevant and, where appropriate, anonymised data and information, as well as through the sharing of state-of-the-art tools and jointly developing cyber detection, analysis and prevention and protection capabilities in a trusted environment.
  • Emergency mechanism
  • A Cybersecurity Emergency Mechanism should be established to support improvement of the Union’s resilience to cyber threats and prepare for and mitigate, in a spirit of solidarity, the short-term impact of significant, large-scale and large-scale-equivalent cybersecurity incidents.
  • The Cybersecurity Emergency Mechanism should support the following types of actions: (i) preparedness actions, namely the coordinated preparedness testing of entities operating in sectors of high criticality across the Union ; (ii) other preparedness actions for entities operating in sectors of high criticality and other critical sectors; (iii) actions supporting response to and initiating recovery from significant, large-scale and large-scale-equivalent cybersecurity incidents, to be provided by trusted managed security service providers participating in the EU Cybersecurity Reserve; (iv) mutual assistance actions granted in the form of grants and under the conditions defined in the relevant work programmes referred to in the Digital Europe Programme.
  • Establishment of the EU Cybersecurity Reserve
  • An EU Cybersecurity Reserve should be established, in order to assist, upon request, in responding or providing support for responding to significant, large-scale, or large-scale-equivalent cybersecurity incidents, and initiating recovery from such incidents.
  • ENISA should prepare, at least every two years, a mapping of the services needed by the users. ENISA should prepare a similar mapping, after informing the Council and consulting EU-CyCLONe and the Commission. A response should be transmitted to the users without delay and in any event no later than 48 hours from the submission of the request to ensure effectiveness of the support action. The contracting authority should inform the Council and the Commission of the results of the process.
  • A third country associated with the Digital Europe Programme should apply for support from the EU Cybersecurity Pool where the agreement by which it is associated with the Digital Europe Programme provides for its participation in the Pool.
  • Evaluation and review
  • By two years from the date of application of this Regulation and at least every four years thereafter, the Commission should carry out an evaluation of the functioning of the measures laid down in this Regulation and should submit a report to the European Parliament and to the Council.
docs/8
date
2024-04-24T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/TA-9-2024-0355_EN.html title: T9-0355/2024
type
Text adopted by Parliament, 1st reading/single reading
body
EP
events/8/summary
  • The European Parliament adopted by 470 votes to 23, with 90 abstentions, a legislative resolution on the proposal for a regulation of the European Parliament and of the Council laying down measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents.
  • The European Parliament’s position adopted at first reading under the ordinary legislative procedure amends the proposal as follows:
  • Subject-matter and objectives
  • The proposed Regulation lays down measures to strengthen capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents , in particular through the following actions:
  • - the establishment of a pan-European network of Cyber Hubs (‘European Cybersecurity Alert System’) to build and enhance coordinated detection and common situational awareness capabilities;
  • - the establishment of a Cybersecurity Emergency Mechanism to support Member States and other users in preparing for, responding to, mitigating the impact of and initiating recovery from significant, large-scale and large-scale equivalent cybersecurity incidents;
  • - the establishment of a European Cybersecurity Incident Review Mechanism to review and assess significant or large-scale incidents.
  • This Regulation pursues the general objectives of reinforcing the competitive position of industry and service sectors in the Union across the digital economy, including microenterprises and small and medium-sized enterprises as well as start-ups, and of contributing to the Union’s technological sovereignty and open strategic autonomy in the area of cybersecurity, including by boosting innovation in the Digital Single Market. It pursues those objectives by strengthening solidarity at Union level , reinforcing the cybersecurity ecosystem, enhancing Member States' cyber resilience and developing the skills, know-how, abilities and competencies of the workforce in relation to cybersecurity.
  • This Regulation is without prejudice to the Member States’ essential State functions, including ensuring the territorial integrity of the State, maintaining law and order and safeguarding national security. In particular, national security remains the sole responsibility of each Member State.
  • Establishment of the European Cybersecurity Alert System
  • A pan-European network of infrastructure that consists of National Cyber Hubs and Cross-Border Cyber Hubs joining on a voluntary basis, the European Cybersecurity Alert System should be established to support the development of advanced capabilities for the Union to enhance detection, analysis and data processing capabilities in relation to cyber threats and the prevention of incidents in the Union.
  • Where a Member State decides to participate in the European Cybersecurity Alert System, it should designate or, where applicable, establish a National Cyber Hub.
  • National Cyber Hubs may cooperate with private sector entities to exchange relevant data and information for the purpose of detecting and preventing cyber threats and incidents, including with sectoral and cross-sectoral communities of essential and important entities. Where appropriate and in accordance with national and Union law, the information requested or received by National Cyber Hubs may include telemetry, sensor and logging data.
  • Cross-Border Cyber Hubs
  • Where at least three Member States are committed to ensuring that their National Cyber Hubs work together to coordinate their cyber-detection and threat monitoring activities, those Member States may establish a Hosting Consortium.
  • A Cross-Border Cyber Hub should be a multi-country platform established by a written consortium agreement. It should bring together in a coordinated network structure the National Cyber Hubs of the Hosting Consortium’s Member States. It should be designed to enhance the monitoring, detection and analysis of cyber threats, to prevent incidents and to support the production of cyber threat intelligence, notably through the exchange of relevant and, where appropriate, anonymised data and information, as well as through the sharing of state-of-the-art tools and jointly developing cyber detection, analysis and prevention and protection capabilities in a trusted environment.
  • Emergency mechanism
  • A Cybersecurity Emergency Mechanism should be established to support improvement of the Union’s resilience to cyber threats and prepare for and mitigate, in a spirit of solidarity, the short-term impact of significant, large-scale and large-scale-equivalent cybersecurity incidents.
  • The Cybersecurity Emergency Mechanism should support the following types of actions: (i) preparedness actions, namely the coordinated preparedness testing of entities operating in sectors of high criticality across the Union ; (ii) other preparedness actions for entities operating in sectors of high criticality and other critical sectors; (iii) actions supporting response to and initiating recovery from significant, large-scale and large-scale-equivalent cybersecurity incidents, to be provided by trusted managed security service providers participating in the EU Cybersecurity Reserve; (iv) mutual assistance actions granted in the form of grants and under the conditions defined in the relevant work programmes referred to in the Digital Europe Programme.
  • Establishment of the EU Cybersecurity Reserve
  • An EU Cybersecurity Reserve should be established, in order to assist, upon request, in responding or providing support for responding to significant, large-scale, or large-scale-equivalent cybersecurity incidents, and initiating recovery from such incidents.
  • ENISA should prepare, at least every two years, a mapping of the services needed by the users. ENISA should prepare a similar mapping, after informing the Council and consulting EU-CyCLONe and the Commission. A response should be transmitted to the users without delay and in any event no later than 48 hours from the submission of the request to ensure effectiveness of the support action. The contracting authority should inform the Council and the Commission of the results of the process.
  • A third country associated with the Digital Europe Programme should apply for support from the EU Cybersecurity Pool where the agreement by which it is associated with the Digital Europe Programme provides for its participation in the Pool.
  • Evaluation and review
  • By two years from the date of application of this Regulation and at least every four years thereafter, the Commission should carry out an evaluation of the functioning of the measures laid down in this Regulation and should submit a report to the European Parliament and to the Council.
docs/8
date
2024-04-24T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/TA-9-2024-0355_EN.html title: T9-0355/2024
type
Text adopted by Parliament, 1st reading/single reading
body
EP
events/8/summary
  • The European Parliament adopted by 470 votes to 23, with 90 abstentions, a legislative resolution on the proposal for a regulation of the European Parliament and of the Council laying down measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents.
  • The European Parliament’s position adopted at first reading under the ordinary legislative procedure amends the proposal as follows:
  • Subject-matter and objectives
  • The proposed Regulation lays down measures to strengthen capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents , in particular through the following actions:
  • - the establishment of a pan-European network of Cyber Hubs (‘European Cybersecurity Alert System’) to build and enhance coordinated detection and common situational awareness capabilities;
  • - the establishment of a Cybersecurity Emergency Mechanism to support Member States and other users in preparing for, responding to, mitigating the impact of and initiating recovery from significant, large-scale and large-scale equivalent cybersecurity incidents;
  • - the establishment of a European Cybersecurity Incident Review Mechanism to review and assess significant or large-scale incidents.
  • This Regulation pursues the general objectives of reinforcing the competitive position of industry and service sectors in the Union across the digital economy, including microenterprises and small and medium-sized enterprises as well as start-ups, and of contributing to the Union’s technological sovereignty and open strategic autonomy in the area of cybersecurity, including by boosting innovation in the Digital Single Market. It pursues those objectives by strengthening solidarity at Union level , reinforcing the cybersecurity ecosystem, enhancing Member States' cyber resilience and developing the skills, know-how, abilities and competencies of the workforce in relation to cybersecurity.
  • This Regulation is without prejudice to the Member States’ essential State functions, including ensuring the territorial integrity of the State, maintaining law and order and safeguarding national security. In particular, national security remains the sole responsibility of each Member State.
  • Establishment of the European Cybersecurity Alert System
  • A pan-European network of infrastructure that consists of National Cyber Hubs and Cross-Border Cyber Hubs joining on a voluntary basis, the European Cybersecurity Alert System should be established to support the development of advanced capabilities for the Union to enhance detection, analysis and data processing capabilities in relation to cyber threats and the prevention of incidents in the Union.
  • Where a Member State decides to participate in the European Cybersecurity Alert System, it should designate or, where applicable, establish a National Cyber Hub.
  • National Cyber Hubs may cooperate with private sector entities to exchange relevant data and information for the purpose of detecting and preventing cyber threats and incidents, including with sectoral and cross-sectoral communities of essential and important entities. Where appropriate and in accordance with national and Union law, the information requested or received by National Cyber Hubs may include telemetry, sensor and logging data.
  • Cross-Border Cyber Hubs
  • Where at least three Member States are committed to ensuring that their National Cyber Hubs work together to coordinate their cyber-detection and threat monitoring activities, those Member States may establish a Hosting Consortium.
  • A Cross-Border Cyber Hub should be a multi-country platform established by a written consortium agreement. It should bring together in a coordinated network structure the National Cyber Hubs of the Hosting Consortium’s Member States. It should be designed to enhance the monitoring, detection and analysis of cyber threats, to prevent incidents and to support the production of cyber threat intelligence, notably through the exchange of relevant and, where appropriate, anonymised data and information, as well as through the sharing of state-of-the-art tools and jointly developing cyber detection, analysis and prevention and protection capabilities in a trusted environment.
  • Emergency mechanism
  • A Cybersecurity Emergency Mechanism should be established to support improvement of the Union’s resilience to cyber threats and prepare for and mitigate, in a spirit of solidarity, the short-term impact of significant, large-scale and large-scale-equivalent cybersecurity incidents.
  • The Cybersecurity Emergency Mechanism should support the following types of actions: (i) preparedness actions, namely the coordinated preparedness testing of entities operating in sectors of high criticality across the Union ; (ii) other preparedness actions for entities operating in sectors of high criticality and other critical sectors; (iii) actions supporting response to and initiating recovery from significant, large-scale and large-scale-equivalent cybersecurity incidents, to be provided by trusted managed security service providers participating in the EU Cybersecurity Reserve; (iv) mutual assistance actions granted in the form of grants and under the conditions defined in the relevant work programmes referred to in the Digital Europe Programme.
  • Establishment of the EU Cybersecurity Reserve
  • An EU Cybersecurity Reserve should be established, in order to assist, upon request, in responding or providing support for responding to significant, large-scale, or large-scale-equivalent cybersecurity incidents, and initiating recovery from such incidents.
  • ENISA should prepare, at least every two years, a mapping of the services needed by the users. ENISA should prepare a similar mapping, after informing the Council and consulting EU-CyCLONe and the Commission. A response should be transmitted to the users without delay and in any event no later than 48 hours from the submission of the request to ensure effectiveness of the support action. The contracting authority should inform the Council and the Commission of the results of the process.
  • A third country associated with the Digital Europe Programme should apply for support from the EU Cybersecurity Pool where the agreement by which it is associated with the Digital Europe Programme provides for its participation in the Pool.
  • Evaluation and review
  • By two years from the date of application of this Regulation and at least every four years thereafter, the Commission should carry out an evaluation of the functioning of the measures laid down in this Regulation and should submit a report to the European Parliament and to the Council.
docs/8
date
2024-04-24T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/TA-9-2024-0355_EN.html title: T9-0355/2024
type
Text adopted by Parliament, 1st reading/single reading
body
EP
events/8/summary
  • The European Parliament adopted by 470 votes to 23, with 90 abstentions, a legislative resolution on the proposal for a regulation of the European Parliament and of the Council laying down measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents.
  • The European Parliament’s position adopted at first reading under the ordinary legislative procedure amends the proposal as follows:
  • Subject-matter and objectives
  • The proposed Regulation lays down measures to strengthen capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents , in particular through the following actions:
  • - the establishment of a pan-European network of Cyber Hubs (‘European Cybersecurity Alert System’) to build and enhance coordinated detection and common situational awareness capabilities;
  • - the establishment of a Cybersecurity Emergency Mechanism to support Member States and other users in preparing for, responding to, mitigating the impact of and initiating recovery from significant, large-scale and large-scale equivalent cybersecurity incidents;
  • - the establishment of a European Cybersecurity Incident Review Mechanism to review and assess significant or large-scale incidents.
  • This Regulation pursues the general objectives of reinforcing the competitive position of industry and service sectors in the Union across the digital economy, including microenterprises and small and medium-sized enterprises as well as start-ups, and of contributing to the Union’s technological sovereignty and open strategic autonomy in the area of cybersecurity, including by boosting innovation in the Digital Single Market. It pursues those objectives by strengthening solidarity at Union level , reinforcing the cybersecurity ecosystem, enhancing Member States' cyber resilience and developing the skills, know-how, abilities and competencies of the workforce in relation to cybersecurity.
  • This Regulation is without prejudice to the Member States’ essential State functions, including ensuring the territorial integrity of the State, maintaining law and order and safeguarding national security. In particular, national security remains the sole responsibility of each Member State.
  • Establishment of the European Cybersecurity Alert System
  • A pan-European network of infrastructure that consists of National Cyber Hubs and Cross-Border Cyber Hubs joining on a voluntary basis, the European Cybersecurity Alert System should be established to support the development of advanced capabilities for the Union to enhance detection, analysis and data processing capabilities in relation to cyber threats and the prevention of incidents in the Union.
  • Where a Member State decides to participate in the European Cybersecurity Alert System, it should designate or, where applicable, establish a National Cyber Hub.
  • National Cyber Hubs may cooperate with private sector entities to exchange relevant data and information for the purpose of detecting and preventing cyber threats and incidents, including with sectoral and cross-sectoral communities of essential and important entities. Where appropriate and in accordance with national and Union law, the information requested or received by National Cyber Hubs may include telemetry, sensor and logging data.
  • Cross-Border Cyber Hubs
  • Where at least three Member States are committed to ensuring that their National Cyber Hubs work together to coordinate their cyber-detection and threat monitoring activities, those Member States may establish a Hosting Consortium.
  • A Cross-Border Cyber Hub should be a multi-country platform established by a written consortium agreement. It should bring together in a coordinated network structure the National Cyber Hubs of the Hosting Consortium’s Member States. It should be designed to enhance the monitoring, detection and analysis of cyber threats, to prevent incidents and to support the production of cyber threat intelligence, notably through the exchange of relevant and, where appropriate, anonymised data and information, as well as through the sharing of state-of-the-art tools and jointly developing cyber detection, analysis and prevention and protection capabilities in a trusted environment.
  • Emergency mechanism
  • A Cybersecurity Emergency Mechanism should be established to support improvement of the Union’s resilience to cyber threats and prepare for and mitigate, in a spirit of solidarity, the short-term impact of significant, large-scale and large-scale-equivalent cybersecurity incidents.
  • The Cybersecurity Emergency Mechanism should support the following types of actions: (i) preparedness actions, namely the coordinated preparedness testing of entities operating in sectors of high criticality across the Union ; (ii) other preparedness actions for entities operating in sectors of high criticality and other critical sectors; (iii) actions supporting response to and initiating recovery from significant, large-scale and large-scale-equivalent cybersecurity incidents, to be provided by trusted managed security service providers participating in the EU Cybersecurity Reserve; (iv) mutual assistance actions granted in the form of grants and under the conditions defined in the relevant work programmes referred to in the Digital Europe Programme.
  • Establishment of the EU Cybersecurity Reserve
  • An EU Cybersecurity Reserve should be established, in order to assist, upon request, in responding or providing support for responding to significant, large-scale, or large-scale-equivalent cybersecurity incidents, and initiating recovery from such incidents.
  • ENISA should prepare, at least every two years, a mapping of the services needed by the users. ENISA should prepare a similar mapping, after informing the Council and consulting EU-CyCLONe and the Commission. A response should be transmitted to the users without delay and in any event no later than 48 hours from the submission of the request to ensure effectiveness of the support action. The contracting authority should inform the Council and the Commission of the results of the process.
  • A third country associated with the Digital Europe Programme should apply for support from the EU Cybersecurity Pool where the agreement by which it is associated with the Digital Europe Programme provides for its participation in the Pool.
  • Evaluation and review
  • By two years from the date of application of this Regulation and at least every four years thereafter, the Commission should carry out an evaluation of the functioning of the measures laid down in this Regulation and should submit a report to the European Parliament and to the Council.
docs/8
date
2024-04-24T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/TA-9-2024-0355_EN.html title: T9-0355/2024
type
Text adopted by Parliament, 1st reading/single reading
body
EP
events/8/summary
  • The European Parliament adopted by 470 votes to 23, with 90 abstentions, a legislative resolution on the proposal for a regulation of the European Parliament and of the Council laying down measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents.
  • The European Parliament’s position adopted at first reading under the ordinary legislative procedure amends the proposal as follows:
  • Subject-matter and objectives
  • The proposed Regulation lays down measures to strengthen capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents , in particular through the following actions:
  • - the establishment of a pan-European network of Cyber Hubs (‘European Cybersecurity Alert System’) to build and enhance coordinated detection and common situational awareness capabilities;
  • - the establishment of a Cybersecurity Emergency Mechanism to support Member States and other users in preparing for, responding to, mitigating the impact of and initiating recovery from significant, large-scale and large-scale equivalent cybersecurity incidents;
  • - the establishment of a European Cybersecurity Incident Review Mechanism to review and assess significant or large-scale incidents.
  • This Regulation pursues the general objectives of reinforcing the competitive position of industry and service sectors in the Union across the digital economy, including microenterprises and small and medium-sized enterprises as well as start-ups, and of contributing to the Union’s technological sovereignty and open strategic autonomy in the area of cybersecurity, including by boosting innovation in the Digital Single Market. It pursues those objectives by strengthening solidarity at Union level , reinforcing the cybersecurity ecosystem, enhancing Member States' cyber resilience and developing the skills, know-how, abilities and competencies of the workforce in relation to cybersecurity.
  • This Regulation is without prejudice to the Member States’ essential State functions, including ensuring the territorial integrity of the State, maintaining law and order and safeguarding national security. In particular, national security remains the sole responsibility of each Member State.
  • Establishment of the European Cybersecurity Alert System
  • A pan-European network of infrastructure that consists of National Cyber Hubs and Cross-Border Cyber Hubs joining on a voluntary basis, the European Cybersecurity Alert System should be established to support the development of advanced capabilities for the Union to enhance detection, analysis and data processing capabilities in relation to cyber threats and the prevention of incidents in the Union.
  • Where a Member State decides to participate in the European Cybersecurity Alert System, it should designate or, where applicable, establish a National Cyber Hub.
  • National Cyber Hubs may cooperate with private sector entities to exchange relevant data and information for the purpose of detecting and preventing cyber threats and incidents, including with sectoral and cross-sectoral communities of essential and important entities. Where appropriate and in accordance with national and Union law, the information requested or received by National Cyber Hubs may include telemetry, sensor and logging data.
  • Cross-Border Cyber Hubs
  • Where at least three Member States are committed to ensuring that their National Cyber Hubs work together to coordinate their cyber-detection and threat monitoring activities, those Member States may establish a Hosting Consortium.
  • A Cross-Border Cyber Hub should be a multi-country platform established by a written consortium agreement. It should bring together in a coordinated network structure the National Cyber Hubs of the Hosting Consortium’s Member States. It should be designed to enhance the monitoring, detection and analysis of cyber threats, to prevent incidents and to support the production of cyber threat intelligence, notably through the exchange of relevant and, where appropriate, anonymised data and information, as well as through the sharing of state-of-the-art tools and jointly developing cyber detection, analysis and prevention and protection capabilities in a trusted environment.
  • Emergency mechanism
  • A Cybersecurity Emergency Mechanism should be established to support improvement of the Union’s resilience to cyber threats and prepare for and mitigate, in a spirit of solidarity, the short-term impact of significant, large-scale and large-scale-equivalent cybersecurity incidents.
  • The Cybersecurity Emergency Mechanism should support the following types of actions: (i) preparedness actions, namely the coordinated preparedness testing of entities operating in sectors of high criticality across the Union ; (ii) other preparedness actions for entities operating in sectors of high criticality and other critical sectors; (iii) actions supporting response to and initiating recovery from significant, large-scale and large-scale-equivalent cybersecurity incidents, to be provided by trusted managed security service providers participating in the EU Cybersecurity Reserve; (iv) mutual assistance actions granted in the form of grants and under the conditions defined in the relevant work programmes referred to in the Digital Europe Programme.
  • Establishment of the EU Cybersecurity Reserve
  • An EU Cybersecurity Reserve should be established, in order to assist, upon request, in responding or providing support for responding to significant, large-scale, or large-scale-equivalent cybersecurity incidents, and initiating recovery from such incidents.
  • ENISA should prepare, at least every two years, a mapping of the services needed by the users. ENISA should prepare a similar mapping, after informing the Council and consulting EU-CyCLONe and the Commission. A response should be transmitted to the users without delay and in any event no later than 48 hours from the submission of the request to ensure effectiveness of the support action. The contracting authority should inform the Council and the Commission of the results of the process.
  • A third country associated with the Digital Europe Programme should apply for support from the EU Cybersecurity Pool where the agreement by which it is associated with the Digital Europe Programme provides for its participation in the Pool.
  • Evaluation and review
  • By two years from the date of application of this Regulation and at least every four years thereafter, the Commission should carry out an evaluation of the functioning of the measures laid down in this Regulation and should submit a report to the European Parliament and to the Council.
docs/8
date
2024-04-24T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/TA-9-2024-0355_EN.html title: T9-0355/2024
type
Text adopted by Parliament, 1st reading/single reading
body
EP
events/8/summary
  • The European Parliament adopted by 470 votes to 23, with 90 abstentions, a legislative resolution on the proposal for a regulation of the European Parliament and of the Council laying down measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents.
  • The European Parliament’s position adopted at first reading under the ordinary legislative procedure amends the proposal as follows:
  • Subject-matter and objectives
  • The proposed Regulation lays down measures to strengthen capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents , in particular through the following actions:
  • - the establishment of a pan-European network of Cyber Hubs (‘European Cybersecurity Alert System’) to build and enhance coordinated detection and common situational awareness capabilities;
  • - the establishment of a Cybersecurity Emergency Mechanism to support Member States and other users in preparing for, responding to, mitigating the impact of and initiating recovery from significant, large-scale and large-scale equivalent cybersecurity incidents;
  • - the establishment of a European Cybersecurity Incident Review Mechanism to review and assess significant or large-scale incidents.
  • This Regulation pursues the general objectives of reinforcing the competitive position of industry and service sectors in the Union across the digital economy, including microenterprises and small and medium-sized enterprises as well as start-ups, and of contributing to the Union’s technological sovereignty and open strategic autonomy in the area of cybersecurity, including by boosting innovation in the Digital Single Market. It pursues those objectives by strengthening solidarity at Union level , reinforcing the cybersecurity ecosystem, enhancing Member States' cyber resilience and developing the skills, know-how, abilities and competencies of the workforce in relation to cybersecurity.
  • This Regulation is without prejudice to the Member States’ essential State functions, including ensuring the territorial integrity of the State, maintaining law and order and safeguarding national security. In particular, national security remains the sole responsibility of each Member State.
  • Establishment of the European Cybersecurity Alert System
  • A pan-European network of infrastructure that consists of National Cyber Hubs and Cross-Border Cyber Hubs joining on a voluntary basis, the European Cybersecurity Alert System should be established to support the development of advanced capabilities for the Union to enhance detection, analysis and data processing capabilities in relation to cyber threats and the prevention of incidents in the Union.
  • Where a Member State decides to participate in the European Cybersecurity Alert System, it should designate or, where applicable, establish a National Cyber Hub.
  • National Cyber Hubs may cooperate with private sector entities to exchange relevant data and information for the purpose of detecting and preventing cyber threats and incidents, including with sectoral and cross-sectoral communities of essential and important entities. Where appropriate and in accordance with national and Union law, the information requested or received by National Cyber Hubs may include telemetry, sensor and logging data.
  • Cross-Border Cyber Hubs
  • Where at least three Member States are committed to ensuring that their National Cyber Hubs work together to coordinate their cyber-detection and threat monitoring activities, those Member States may establish a Hosting Consortium.
  • A Cross-Border Cyber Hub should be a multi-country platform established by a written consortium agreement. It should bring together in a coordinated network structure the National Cyber Hubs of the Hosting Consortium’s Member States. It should be designed to enhance the monitoring, detection and analysis of cyber threats, to prevent incidents and to support the production of cyber threat intelligence, notably through the exchange of relevant and, where appropriate, anonymised data and information, as well as through the sharing of state-of-the-art tools and jointly developing cyber detection, analysis and prevention and protection capabilities in a trusted environment.
  • Emergency mechanism
  • A Cybersecurity Emergency Mechanism should be established to support improvement of the Union’s resilience to cyber threats and prepare for and mitigate, in a spirit of solidarity, the short-term impact of significant, large-scale and large-scale-equivalent cybersecurity incidents.
  • The Cybersecurity Emergency Mechanism should support the following types of actions: (i) preparedness actions, namely the coordinated preparedness testing of entities operating in sectors of high criticality across the Union ; (ii) other preparedness actions for entities operating in sectors of high criticality and other critical sectors; (iii) actions supporting response to and initiating recovery from significant, large-scale and large-scale-equivalent cybersecurity incidents, to be provided by trusted managed security service providers participating in the EU Cybersecurity Reserve; (iv) mutual assistance actions granted in the form of grants and under the conditions defined in the relevant work programmes referred to in the Digital Europe Programme.
  • Establishment of the EU Cybersecurity Reserve
  • An EU Cybersecurity Reserve should be established, in order to assist, upon request, in responding or providing support for responding to significant, large-scale, or large-scale-equivalent cybersecurity incidents, and initiating recovery from such incidents.
  • ENISA should prepare, at least every two years, a mapping of the services needed by the users. ENISA should prepare a similar mapping, after informing the Council and consulting EU-CyCLONe and the Commission. A response should be transmitted to the users without delay and in any event no later than 48 hours from the submission of the request to ensure effectiveness of the support action. The contracting authority should inform the Council and the Commission of the results of the process.
  • A third country associated with the Digital Europe Programme should apply for support from the EU Cybersecurity Pool where the agreement by which it is associated with the Digital Europe Programme provides for its participation in the Pool.
  • Evaluation and review
  • By two years from the date of application of this Regulation and at least every four years thereafter, the Commission should carry out an evaluation of the functioning of the measures laid down in this Regulation and should submit a report to the European Parliament and to the Council.
docs/8
date
2024-04-24T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/TA-9-2024-0355_EN.html title: T9-0355/2024
type
Text adopted by Parliament, 1st reading/single reading
body
EP
events/8
date
2024-04-24T00:00:00
type
Decision by Parliament, 1st reading
body
EP
docs
url: https://www.europarl.europa.eu/doceo/document/TA-9-2024-0355_EN.html title: T9-0355/2024
forecasts
  • date: 2024-04-24T00:00:00 title: Vote in plenary scheduled
procedure/stage_reached
Old
Awaiting Parliament's position in 1st reading
New
Awaiting Council's 1st reading position
docs/8
date
2024-04-24T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/TA-9-2024-0355_EN.html title: T9-0355/2024
type
Text adopted by Parliament, 1st reading/single reading
body
EP
events/8
date
2024-04-24T00:00:00
type
Decision by Parliament, 1st reading
body
EP
docs
url: https://www.europarl.europa.eu/doceo/document/TA-9-2024-0355_EN.html title: T9-0355/2024
forecasts
  • date: 2024-04-24T00:00:00 title: Vote in plenary scheduled
procedure/stage_reached
Old
Awaiting Parliament's position in 1st reading
New
Awaiting Council's 1st reading position
forecasts/0/title
Old
Vote in plenary scheduled
New
Vote scheduled
forecasts/0
date
2024-04-24T00:00:00
title
Vote in plenary scheduled
forecasts/0
date
2024-04-22T00:00:00
title
Indicative plenary sitting date
docs/6
date
2024-03-20T00:00:00
docs
url: https://www.europarl.europa.eu/RegData/commissions/itre/inag/2024/03-21/ITRE_AG(2024)760882_EN.docx title: PE760.882
type
Text agreed during interinstitutional negotiations
body
EP
docs/7
date
2024-03-21T00:00:00
docs
title: GEDA/A/(2024)001689
type
Coreper letter confirming interinstitutional agreement
body
CSL
events/7
date
2024-03-20T00:00:00
type
Approval in committee of the text agreed at 1st reading interinstitutional negotiations
body
EP
docs
url: https://www.europarl.europa.eu/RegData/commissions/itre/inag/2024/03-21/ITRE_AG(2024)760882_EN.docx title: PE760.882
docs/6
date
2024-03-20T00:00:00
docs
url: https://www.europarl.europa.eu/RegData/commissions/itre/inag/2024/03-21/ITRE_AG(2024)760882_EN.docx title: PE760.882
type
Text agreed during interinstitutional negotiations
body
EP
docs/7
date
2024-03-21T00:00:00
docs
title: GEDA/A/(2024)001689
type
Coreper letter confirming interinstitutional agreement
body
CSL
events/7
date
2024-03-20T00:00:00
type
Approval in committee of the text agreed at 1st reading interinstitutional negotiations
body
EP
docs
url: https://www.europarl.europa.eu/RegData/commissions/itre/inag/2024/03-21/ITRE_AG(2024)760882_EN.docx title: PE760.882
docs/6
date
2024-03-21T00:00:00
docs
title: GEDA/A/(2024)001689
type
Coreper letter confirming interinstitutional agreement
body
CSL
events/7
date
2024-03-20T00:00:00
type
Approval in committee of the text agreed at 1st reading interinstitutional negotiations
body
EP
docs
title: GEDA/A/(2024)001689
docs/6
date
2024-03-21T00:00:00
docs
title: GEDA/A/(2024)001689
type
Coreper letter confirming interinstitutional agreement
body
CSL
events/7
date
2024-03-20T00:00:00
type
Approval in committee of the text agreed at 1st reading interinstitutional negotiations
body
EP
docs
title: GEDA/A/(2024)001689
docs/6
date
2024-03-21T00:00:00
docs
title: GEDA/A/(2024)001689
type
Coreper letter confirming interinstitutional agreement
body
CSL
events/7
date
2024-03-20T00:00:00
type
Approval in committee of the text agreed at 1st reading interinstitutional negotiations
body
EP
docs
title: GEDA/A/(2024)001689
forecasts
  • date: 2024-04-22T00:00:00 title: Indicative plenary sitting date
docs/5
date
2023-11-29T00:00:00
docs
url: https://dmsearch.cor.europa.eu/search/public?k=(documenttype:AC)(documentnumber:2191)(documentyear:2023)(documentlanguage:EN) title: CDR2191/2023
type
Committee of the Regions: opinion
body
CofR
committees/0/shadows/3
name
TOŠENOVSKÝ Evžen
group
European Conservatives and Reformists Group
abbr
ECR
docs/5
date
2023-12-08T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/A-9-2023-0426_EN.html title: A9-0426/2023
type
Committee report tabled for plenary, 1st reading/single reading
body
EP
docs/8
date
2024-01-04T00:00:00
docs
url: https://connectfolx.europarl.europa.eu/connefof/app/exp/COM(2023)0209 title: COM(2023)0209
type
Contribution
body
FR_SENATE
events/4/summary
  • The Committee on Industry, Research and Energy adopted the report by Lina GÁLVEZ MUÑOZ (S&D, ES) on the proposal for a regulation of the European Parliament and of the Council laying down measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents.
  • The committee responsible recommended that the European Parliament's position adopted at first reading under the ordinary legislative procedure should amend the proposal as follows:
  • Coordinated governance
  • Members stressed that close and coordinated cooperation is needed between the public sector, the private sector, academia, civil society and the media. Moreover, the Union's response needs to be coordinated with international institutions as well as trusted and like-minded international partners. To ensure cooperation with trusted and like-minded international partners and protection against systemic rivals, entities established in third countries that are not parties to the WTO Agreement on Government Procurement (GPA) should not be allowed to participate in procurement under this Regulation.
  • Cybersecurity reserve
  • Regarding the new cybersecurity reserve, Members believe it has the potential of developing industrial capacities in the EU, including for SMEs , with investments in research and innovation to develop state of the art technologies, such as cloud and artificial intelligence technologies. In addition, the report proposed to maintain the participation of the industry, enhance the criteria and trust of their participation (i.e. connecting their participation to a national or local company) by clarifying the criteria and the definition of technological sovereignty and to guarantee a balance between non-EU and EU actors. In addition, Members proposed for the Cyber Emergency Mechanism a certification scheme to be used for private providers to build a longstanding and trusted partnership.
  • To support the establishment of the EU Cybersecurity Reserve, the Commission could consider requesting ENISA to prepare a candidate certification scheme for managed security services in the areas covered by the Cybersecurity Emergency Mechanism. To fulfil the additional tasks deriving from this provision, ENISA should receive adequate, additional funding .
  • Funding
  • Considering geopolitical developments and the growing cyber threat landscape and in order to ensure continuity and further development of the measures laid down in this Regulation beyond 2027, particularly the European Cyber Shield and the Cybersecurity Emergency Mechanism, it is necessary to ensure a specific budget line in the multiannual financial framework for the period 2028-2034. According to the report, Member States should endeavour to commit themselves to supporting all necessary measures to reduce cyber threats and incidents throughout the Union and to strengthen solidarity.
  • Strengthening R&I in cybersecurity
  • The amended text called for enhanced research and innovation (R&I) in cybersecurity to increase the resilience and the open strategic autonomy of the Union. Similarly, it is important to create synergies with R&I programmes and with existing instruments and institutions and to strengthen cooperation and coordination among the different stakeholders, including the private sector, civil society, academia, Member States, the Commission and ENISA.
  • Evaluation and Review
  • The amended text stated that by two years from the date of application of this Regulation and every two years thereafter, the Commission should carry out an evaluation concerning, inter alia : (i) both the positive and the negative working of the Cybersecurity Emergency Mechanism; (ii) the contribution of this Regulation to reinforce the Union’s resilience and open strategic autonomy, to improve the competitiveness of the relevant industry sectors, microenterprises, SMEs including start-ups, and the development of cybersecurity skills in the Union; (iii) the use and added value of the EU Cybersecurity Reserve.
links
Research document
events/6
date
2023-12-13T00:00:00
type
Committee decision to enter into interinstitutional negotiations confirmed by plenary (Rule 71)
body
EP
events/5
date
2023-12-11T00:00:00
type
Committee decision to enter into interinstitutional negotiations announced in plenary (Rule 71)
body
EP
docs/5/docs/0/url
https://www.europarl.europa.eu/doceo/document/A-9-2023-0426_EN.html
events/4/docs/0/url
https://www.europarl.europa.eu/doceo/document/A-9-2023-0426_EN.html
docs/5
date
2023-12-08T00:00:00
docs
title: A9-0426/2023
type
Committee report tabled for plenary, 1st reading/single reading
body
EP
events/4
date
2023-12-08T00:00:00
type
Committee report tabled for plenary, 1st reading
body
EP
docs
title: A9-0426/2023
procedure/stage_reached
Old
Awaiting committee decision
New
Awaiting Parliament's position in 1st reading
events/2
date
2023-12-07T00:00:00
type
Vote in committee, 1st reading
body
EP
events/3
date
2023-12-07T00:00:00
type
Committee decision to open interinstitutional negotiations with report adopted in committee
body
EP
docs/4
date
2023-10-27T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/AFET-AD-750145_EN.html title: PE750.145
committee
AFET
type
Committee opinion
body
EP
docs/4/date
Old
2023-06-28T00:00:00
New
2023-06-29T00:00:00
docs/5/date
Old
2023-09-17T00:00:00
New
2023-09-18T00:00:00
docs/6/date
Old
2023-07-31T00:00:00
New
2023-08-01T00:00:00
docs/3
date
2023-10-25T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/TRAN-AD-752607_EN.html title: PE752.607
committee
TRAN
type
Committee opinion
body
EP
docs/4
date
2023-09-17T00:00:00
docs
url: https://connectfolx.europarl.europa.eu/connefof/app/exp/COM(2023)0209 title: COM(2023)0209
type
Contribution
body
PT_PARLIAMENT
docs/2
date
2023-09-22T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/ITRE-AM-753628_EN.html title: PE753.628
type
Amendments tabled in committee
body
EP
docs/1
date
2023-09-04T00:00:00
docs
url: https://www.europarl.europa.eu/doceo/document/ITRE-PR-752795_EN.html title: PE752.795
type
Committee draft report
body
EP
docs/2
date
2023-07-31T00:00:00
docs
url: https://connectfolx.europarl.europa.eu/connefof/app/exp/COM(2023)0209 title: COM(2023)0209
type
Contribution
body
CZ_SENATE
docs/0
date
2023-07-13T00:00:00
docs
url: https://dmsearch.eesc.europa.eu/search/public?k=(documenttype:AC)(documentnumber:2408)(documentyear:2023)(documentlanguage:EN) title: CES2408/2023
type
Economic and Social Committee: opinion, report
body
ESC
committees/3/rapporteur
  • name: FALCĂ Gheorghe date: 2023-07-07T00:00:00 group: Group of European People's Party abbr: EPP
docs/0
date
2023-06-28T00:00:00
docs
url: https://connectfolx.europarl.europa.eu/connefof/app/exp/COM(2023)0209 title: COM(2023)0209
type
Contribution
body
CZ_CHAMBER
docs/0
date
2023-04-18T00:00:00
docs
type
Legislative proposal
body
EC
committees/0
type
Responsible Committee
body
EP
committee_full
Industry, Research and Energy
committee
ITRE
associated
False
rapporteur
name: GÁLVEZ MUÑOZ Lina date: 2023-05-02T00:00:00 group: Group of Progressive Alliance of Socialists and Democrats abbr: S&D
shadows
committees/0
type
Responsible Committee
body
EP
committee_full
Industry, Research and Energy
committee
ITRE
associated
False
rapporteur
name: GÁLVEZ MUÑOZ Lina date: 2023-05-02T00:00:00 group: Group of Progressive Alliance of Socialists and Democrats abbr: S&D
shadows
name: GROOTHUIS Bart group: Renew Europe group abbr: Renew
committees/1
Old
type
Committee Opinion
body
EP
committee_full
Civil Liberties, Justice and Home Affairs
committee
LIBE
associated
False
opinion
False
New
type
Committee Opinion
body
EP
committee_full
Foreign Affairs
committee
AFET
associated
False
rapporteur
name: TUDORACHE Dragoş date: 2023-06-16T00:00:00 group: Renew Europe group abbr: Renew
committees/2
Old
type
Committee Opinion
body
EP
committee_full
Internal Market and Consumer Protection
committee
IMCO
associated
False
opinion
False
New
type
Committee Opinion
body
EP
committee_full
Budgets
committee
BUDG
associated
False
opinion
False
committees/3
Old
type
Committee Opinion
body
EP
committee_full
Budgetary Control
committee
CONT
associated
False
opinion
False
New
type
Committee Opinion
body
EP
committee_full
Transport and Tourism
committee
TRAN
associated
False
committees/4
Old
type
Committee Opinion
body
EP
committee_full
Foreign Affairs
committee
AFET
associated
False
rapporteur
name: TUDORACHE Dragoş date: 2023-06-16T00:00:00 group: Renew Europe group abbr: Renew
New
type
Committee Opinion
body
EP
committee_full
Civil Liberties, Justice and Home Affairs
committee
LIBE
associated
False
opinion
False
committees/5
Old
type
Committee Opinion
body
EP
committee_full
Budgets
committee
BUDG
associated
False
opinion
False
New
type
Committee Opinion
body
EP
committee_full
Internal Market and Consumer Protection
committee
IMCO
associated
False
opinion
False
committees/6
Old
type
Committee Opinion
body
EP
committee_full
Transport and Tourism
committee
TRAN
associated
False
New
type
Committee Opinion
body
EP
committee_full
Budgetary Control
committee
CONT
associated
False
opinion
False
committees/1
type
Committee Opinion
body
EP
committee_full
Foreign Affairs
committee
AFET
associated
False
committees/1
Old
type
Committee Opinion
body
EP
committee_full
Budgets
committee
BUDG
associated
False
opinion
False
New
type
Committee Opinion
body
EP
committee_full
Civil Liberties, Justice and Home Affairs
committee
LIBE
associated
False
opinion
False
committees/2
Old
type
Committee Opinion
body
EP
committee_full
Transport and Tourism
committee
TRAN
associated
False
New
type
Committee Opinion
body
EP
committee_full
Internal Market and Consumer Protection
committee
IMCO
associated
False
opinion
False
committees/3
Old
type
Committee Opinion
body
EP
committee_full
Civil Liberties, Justice and Home Affairs
committee
LIBE
associated
False
opinion
False
New
type
Committee Opinion
body
EP
committee_full
Budgetary Control
committee
CONT
associated
False
opinion
False
committees/4
type
Committee Opinion
body
EP
committee_full
Foreign Affairs
committee
AFET
associated
False
committees/4/rapporteur
  • name: TUDORACHE Dragoş date: 2023-06-16T00:00:00 group: Renew Europe group abbr: Renew
committees/5
Old
type
Committee Opinion
body
EP
committee_full
Internal Market and Consumer Protection
committee
IMCO
associated
False
opinion
False
New
type
Committee Opinion
body
EP
committee_full
Budgets
committee
BUDG
associated
False
opinion
False
committees/6
Old
type
Committee Opinion
body
EP
committee_full
Budgetary Control
committee
CONT
associated
False
opinion
False
New
type
Committee Opinion
body
EP
committee_full
Transport and Tourism
committee
TRAN
associated
False
committees/0/shadows
  • name: GROOTHUIS Bart group: Renew Europe group abbr: Renew
committees/6/opinion
False
committees/4/opinion
False
commission
  • body: EC dg: Communications Networks, Content and Technology commissioner: BRETON Thierry
events/1
date
2023-06-01T00:00:00
type
Committee referral announced in Parliament, 1st reading
body
EP
procedure/dossier_of_the_committee
  • ITRE/9/11824
procedure/stage_reached
Old
Preparatory phase in Parliament
New
Awaiting committee decision
committees/5/opinion
False
events/0/summary
  • PURPOSE: to lay down measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents (EU Cyber solidarity act).
  • PROPOSED ACT: Regulation of the European Parliament and of the Council.
  • ROLE OF THE EUROPEAN PARLIAMENT: the European Parliament decides in accordance with the ordinary legislative procedure and on an equal footing with the Council.
  • BACKGROUND: the magnitude, frequency and impact of cybersecurity incidents are increasing, including supply chain attacks aiming at cyberespionage, ransomware or disruption. They represent a major threat to the functioning of network and information systems. In view of the fast-evolving threat landscape, the threat of possible large-scale incidents causing significant disruption or damage to critical infrastructures demands heightened preparedness at all levels of the Union’s cybersecurity framework. That threat goes beyond Russia’s military aggression on Ukraine and is likely to persist given the multiplicity of state-aligned, criminal and hacktivist actors involved in current geopolitical tensions.
  • CONTENT: with this proposal, the Commission aims to set up Cyber Solidarity Act which establishes EU capabilities to make Europe more resilient and reactive in front of cyber threats, while strengthening existing cooperation mechanism. It will contribute to ensuring a safe and secure digital landscape for citizens and businesses and to protecting critical entities and essential services, such as hospitals and public utilities.
  • This Regulation lays down measures to strengthen capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents, in particular through the following actions:
  • European Cyber Shield
  • An interconnected pan-European infrastructure of Security Operations Centres (European Cyber Shield) will be established to develop advanced capabilities for the Union to detect, analyse and process data on cyber threats and incidents in the Union. It will be composed of Security Operations Centres (SOCs) across the EU, brought together in several multi-country SOC platforms, built with support from the Digital Europe Programme (DEP) to supplement national funding. The Cyber Shield will be tasked with improving the detection, analysis and response to cyber threats. These SOCs will use advanced technology such as Artificial Intelligence (AI) and data analytics to detect and share warnings on such threats with authorities across borders. They will allow for a more timely and efficient response to major threats.
  • Cyber Emergency Mechanism
  • The Cyber Emergency Mechanism will improve the Union’s resilience to major cybersecurity threats and prepare for and mitigate, in a spirit of solidarity, the short-term impact of significant and large-scale cybersecurity incidents. It provides for actions to support preparedness, including coordinated testing of entities operating in highly critical sectors, response to and immediate recovery from significant or large-scale cybersecurity incidents or mitigate significant cyber threats and mutual assistance actions.
  • Also set to be created is an EU Cybersecurity Reserve made up of trusted and certified private companies ready to respond to major incidents.
  • European Cybersecurity Incident Review Mechanism
  • The proposed Regulation would also establish the Cybersecurity Incident Review Mechanism to assess and review specific cybersecurity incidents. At the request of the Commission or of national authorities (the EU-CyCLONe or the CSIRTs network), the EU Cybersecurity Agency (ENISA) will be responsible for the review of specific significant or large-scale cybersecurity incident and should deliver a report that includes lessons learned, and where appropriate, recommendations to improve Union’s cyber response.
  • Budgetary implications
  • The EU Cybersecurity Shield and the Cybersecurity Emergency Mechanism of this Regulation will be supported by funding under Strategic Objective ‘Cybersecurity’ of Digital Europe Programme (DEP).
  • The total budget includes an increase of EUR 100 million that this Regulation proposes to re-allocate from other Strategic Objectives of DEP. This will bring the new total amount available for Cybersecurity actions under DEP to EUR 842.8 million. Part of the additional EUR 100 million will reinforce the budget managed by the ECCC to implement actions on SOCs and preparedness as part of their Work Programme(s). Moreover, the additional funding will serve to support the establishment of the EU Cybersecurity Reserve.
  • It complements the budget already foreseen for similar actions in the main DEP and Cybersecurity DEP WP from the period 2023-2027 which could bring the total to 551 million for 2023-2027, while 115 million were dedicated already in the form of pilots for 2021-2022. Including Member States contributions, the overall budget could amount up to EUR 1.109 billion.
committees/2/opinion
False
committees/0/rapporteur
  • name: GÁLVEZ MUÑOZ Lina date: 2023-05-02T00:00:00 group: Group of Progressive Alliance of Socialists and Democrats abbr: S&D