New Cybersecurity Competence Centre and network: informal agreement with the European Parliament

The EU is stepping up its capacity to protect Europe against cyber threats and boost the competitiveness of the EU’s cybersecurity industry. Today, the negotiators of the Council and the European Parliament reached a provisional agreement on a proposal to set up a European Cybersecurity Industrial, Technology and Research Competence Centre and a network of national coordination centres. Together, these structures will help secure the digital single market, including in areas such as e-commerce, smart mobility and the Internet of Things, and increase the EU’s autonomy in the area of cybersecurity.

The new Competence Centre, together with the network of national coordination centres designated by member states, will help the EU to pool and network its expertise in cybersecurity research, technology and industrial development, and promote the deployment of the latest cybersecurity solutions.

The Centre, in cooperation with the network, will deliver cybersecurity-related financial support from the Horizon Europe and Digital Europe programmes.

The Centre will be located in Bucharest, Romania. Its functioning will be funded primarily by Horizon Europe and Digital Europe.

The Centre will also bring together the main stakeholders, the European cybersecurity competence community, to enhance and spread cybersecurity expertise across the EU. The members of this community will include industry, academic research organisations, public entities dealing with cybersecurity operational and technical matters, and relevant actors from other sectors facing cybersecurity challenges.

The regulation establishing the Centre will enter into force 20 days after its publication in the EU’s Official Journal. The Centre will be established for the period from the entry into force of the regulation to 31 December 2029. After that it will be wound up, unless its mandate is extended following an evaluation and, potentially, a legislative proposal by the Commission.

The EU also has the permanent European Union Agency for Cybersecurity (ENISA). The activities of the new European Cybersecurity Industrial, Technology and Research Competence Centre will complement ENISA’s tasks.

The provisional agreement reached today is subject to approval by the Council. It will now be submitted to the Council’s Permanent Representatives Committee (Coreper) for endorsement.