CEF Telecom Calls: CEF-TC : Cyber Security TZAFALIAS ARISTOTELIS POLICY OFFICER DG CONNECT

Similar documents
COMMISSION RECOMMENDATION. of on Coordinated Response to Large Scale Cybersecurity Incidents and Crises

Directive on security of network and information systems (NIS): State of Play

Exploring the European Commission s Network and Information Security Directive (NIS) What every CISO should know

A Strategy for a secure Information Society Dialogue, Partnership and empowerment

H2020 WP Cybersecurity PPP topics

Security and resilience in Information Society: the European approach

CEF e-invoicing. Presentation to the European Multi- Stakeholder Forum on e-invoicing. DIGIT Directorate-General for Informatics.

13967/16 MK/mj 1 DG D 2B

Cyber Security in Europe

Cybersecurity & Digital Privacy in the Energy sector

Information sharing in the EU policy on NIS & CIIP. Andrea Servida European Commission DG INFSO-A3

NIS-Directive and Smart Grids

Trustworthy ICT. FP7-ICT Objective 1.5 WP 2013

ehealth Network ehealth Network Governance model for the ehealth Digital Service Infrastructure during the CEF funding

Securing Europe's Information Society

Call for Expressions of Interest

Directive on Security of Network and Information Systems

The NIS Directive and Cybersecurity in

Third public workshop of the Amsterdam Group and CODECS European Framework for C-ITS Deployment

The European Policy on Critical Information Infrastructure Protection (CIIP) Andrea SERVIDA European Commission DG INFSO.A3

EISAS Enhanced Roadmap 2012

Connecting public services across Europe: ambition and results so far

ENISA s Position on the NIS Directive

Digital Security. Rafael Tesoro Carretero DG CNECT, Unit H1 - Cybersecurity & Digital Privacy

CEF Telecom policy background. DG CONNECT, 12 September 2017

ehealth action in the EU

Status of the 2015 CEF call of setting up the ehealth DSI National Contact Points

EU policy on Network and Information Security & Critical Information Infrastructures Protection

Brussels, 19 May 2011 COUNCIL THE EUROPEAN UNION 10299/11 TELECOM 71 DATAPROTECT 55 JAI 332 PROCIV 66. NOTE From : COREPER

Security and resilience in the Information Society: the role of CERTs/CSIRTs in the context of the EU CIIP policy

Network and Information Security Directive

Valérie Andrianavaly European Commission DG INFSO-A3

Discussion on MS contribution to the WP2018

New cybersecurity landscape in the EU Sławek Górniak 9. CA-Day, Berlin, 28th November 2017

NATIONAL CYBER SECURITY STRATEGY. - Version 2.0 -

Connecting public services across Europe: ambition and results so far

THE CYBER SECURITY ENVIRONMENT IN LITHUANIA

Research Infrastructures and Horizon 2020

Government Resolution No of February 15, Resolution: Advancing National Regulation and Governmental Leadership in Cyber Security

H2020 Opportunities in the Area of Security and Critical Infrastructure Protection

CERT.LV activities, role in Latvia and globally. Baiba Kaskina, CERT.LV , Sofia, Bulgaria

ENISA EU Threat Landscape

Connecting public services across Europe: ambitions and results so far

Shaping the Cyber Security R&D Agenda in Europe, Horizon 2020

Cyber Security in Europe and CEER s new PEER initiative

ENISA S WORK ON ICS AND SMART GRID SECURITY

NIS Standardisation ENISA view

Package of initiatives on Cybersecurity

Fundamentals of Cybersecurity/CIIP. Building Capacity: Using a National Strategy & Self-Assessment

EUROPEAN ORGANISATION FOR SECURITY SUPPLY CHAIN SECURITY WHITE PAPER

EU Security research in support to Critical Infrastructure Protection

PATHWAYS TO INNOVATION IN DISASTER RISK MANAGEMENT. Paolo Venturoni CEO European Organisation For Security 4 th June 2018

ehealth Network Recommendations on Country Guide for ehealth NCP implementation

cybersecurity in Europe Rossella Mattioli Secure Infrastructures and Services

NIS Directive : Call for Proposals

H2020 EUB EU-Brazil Research and Development Cooperation in Advanced Cyber Infrastructure. NCP Training Brussels, 18 September 2014

METHODOLOGY AND CRITERIA FOR THE CYBERSECURITY REPORTS

CONCLUSIONS OF THE WESTERN BALKANS DIGITAL SUMMIT APRIL, SKOPJE

The Role of ENISA in the Implementation of the NIS Directive Anna Sarri Officer in NIS CIP Workshop Vienna 19 th September 2017

H2020 & THE FRENCH SECURITY RESEARCH

Regulating Cyber: the UK s plans for the NIS Directive

EU Data Protection Triple Threat for May of 2018 What Inside Counsel Needs to Know

ICB Industry Consultation Body

UNCLASSIFIED. National and Cyber Security Branch. Presentation for Gridseccon. Quebec City, October 18-21

RFD. for ICERT ( ) RESULTS-FRAMEWORK DOCUMENT. Department of Information Technology. Results-Framework Document (RFD) for CERT-In ( )

Khoen LIEM. Industrial Policy. A systematic approach for Civil Security: From EU Security- Research Policy

The SPARKS Project Motivation, Objectives and Results

ERCI cybersecurity seminar Guildford ERCI cybersecurity seminar Guildford

Research Infrastructures and Horizon 2020

H2020 Thematic Oriented Training "Secure Societies Calls"

THE CONNECTING EUROPE FACILITY

ENISA & Cybersecurity. Dr. Udo Helmbrecht Executive Director, European Network & Information Security Agency (ENISA) 25 October 2010

John Snare Chair Standards Australia Committee IT/12/4

Cybersecurity Policy in the EU: Security Directive - Security for the data in the cloud

New Services in Mobility: C-ITS

EU General Data Protection Regulation (GDPR) Achieving compliance

15 November Introduction to Connecting Europe Facility. DIGIT Directorate-General for Informatics

PROJECT FINAL REPORT. Tel: Fax:

Security Awareness Training Courses

The EU Cybersecurity Package: Implications for ENISA Dr. Steve Purser Head of ENISA Core Operations Athens, 30 th January 2018

ehealth and DSM, Digital Single Market

EU Customs Policy for Supply Chain Security & Detection Technology (for CBRNE)

UPU UNIVERSAL POSTAL UNION. CA C 4 SDPG AHG DRM Doc 3. Original: English COUNCIL OF ADMINISTRATION. Committee 4 Development Cooperation

European Pilot Production Network EPPN Planning and Activities

Objective 1.1: Innovative lighting systems based on Solid State Lighting (SSL)

Birgit Morlion. DG Communications Networks, Content and Technology (DG CONNECT)

European Union Agency for Network and Information Security

Response to the Security of Network and Information Systems Public Consultation Compiled on behalf of the UK Computing Research Committee, UKCRC.

VdTÜV Statement on the Communication from the EU Commission A Digital Single Market Strategy for Europe

Cybersecurity Package

IoT privacy risk management in ANASTACIA project

Preemptive PREventivE Methodology and Tools to protect utilities

Infrastructures and Service Dimitra Liveri Network and Information Security Expert, ENISA

Council of the European Union Brussels, 14 September 2017 (OR. en)

Second Online Workshop Report Study of the readiness of Member States for a common pan-european network infrastructure for public services

The Network and Information Security Directive - ENISA's contribution

Borderless ehealth in support of healthy citizens in Europe

DIGITIZING INDUSTRY, ICT STANDARDS TO

14965/17 MK/ec 1 DG D 2B

EU LEIT-ICT program and SE position on FP9

Transcription:

2017-2 CEF Telecom Calls: CEF-TC-2017-2: Cyber Security TZAFALIAS ARISTOTELIS POLICY OFFICER DG CONNECT

CEF-TC-2017-2: Cyber Security Funding under this call will allow the Member States to limit the economic and political damage of cyber-attacks, while reducing the overall costs of cyber security for individual Member States. This will be achieved by the development of national capabilities and by facilitating connections to the information exchange cooperation mechanisms that will allow Member States to co-operate and respond early enough to prevent, detect or mitigate cyber security incidents that may affect their network and information systems, making European digital networks more secure for their citizens Financial Support Instrument: Grants for Generic Services Budget: 12 million EU funding: up to 1,000,000 per action Co-funding rate: Up to 75% of the eligible costs of the action Pre-financing:50% within 30 days after signed grant agreement, balance on completion Indicative duration of the actions: 24 months 2

Eligibility Proposals may be submitted by a single CERT/CSIRT or by a consortium of several CERTs/CSIRTs based in one or more Member States Primarily focused on national/governmental (n/g) CERTs/CSIRTs Each applicant must provide a written confirmation from the concerned Member States Ministry that an applicant has been designated as either n/g or sectoral CERT/CSIRT 3

Legal framework The Cyber security DSI is underpinned by the Security of Network and Information Systems (NIS) Directive (2016/1148) Generic Services under this DSI will support the development of operational capacity in Member State CSIRTs in accordance with Article 9 and Annex 1 of the NIS Directive Generic Services will also facilitate swift and effective operational cooperation between Member State CSIRTs via access points to the CSP - cooperation mechanisms for information exchange in accordance with Article 12 of the NIS Directive (CSIRT Network) 4

Objectives The specific objective in 2017 is to support Generic Services provided by n/g CERTs/CSIRTs in all the Member States, building on their interoperability with the Core Service Platform information exchange cooperation mechanisms established via the SMART 2015/1089 project This call is primarily focused on those Member States who did not receive funding under the previous cyber security call (i.e. CEF-TC-2016-3) 5

Objectives Funding will be granted as an incentive for Member States to develop their cyber security capacity for participating in the cooperation platform and mechanisms under deployment in the project SMART 2015/1089, including one or both of the following: 1. Activities for increasing the preparedness of the n/g CERTs/CSIRTs (e.g. development or acquisition of better tools for analysis, identification, and detection of threats, awareness campaigns ancillary to capabilities development, maturity assessment and development encompassing governance and legal compliance, services to local agents) 2. Establishment of access points from the n/g CERTs/CSIRTs to the Core Service Platform - cooperation mechanisms (e.g. secure devices and software, interfaces, gateways, translation of local tools into common formats). 6

Objectives These activities could include: acquisition and operation of national level cyber security IT systems, experimental test-beds, and training facilities, that will facilitate the cross-border cooperation of n/g CERTs/CSIRTs, which may be complemented with very sophisticated toolsets specific to the cyber security area that directly support CERT/CSIRT operations (e.g. sandboxes, simulation environments, advanced research infrastructures, and secure control rooms) hiring of trained staff, training of current staff, joint training courses, cooperation meetings, Europe-wide cyber security exercises, data protection compliance audits. However, dissemination activities including the organisation of workshops and meetings must be planned in alignment with the activities of the CSIRT Network, as well as other CSIRTs/CERTs to avoid possible overlapping 7

Objectives Please note: that activities relating to the functioning of the organisation (e.g. installing/outfitting data, training and/or meeting rooms with floors, electrical systems, air conditioning, office furniture, physical security controls, fire sensors, network cables and sockets, etc.) will not be supported under this call. for all those actions selected following this call which propose a connection with the Core Service Platform - cooperation mechanisms in SMART 2015/1089, demonstration of the interaction with or use of the Platform will be required. 8

award criteria Relevance: Alignment with the objectives and activities required for the deployment of the Cyber security Digital Service Infrastructure described in Chapter 3.7 of the work programme and priorities set in Section 2 of the call text How well does the written proposal fit with the actions and activities in Section 2.1 of the call text? How does it help meet expected outputs and outcomes in Section 2.2 of the call text? Alignment and synergies with relevant policies, strategies and activities at European and national level Does the written proposal demonstrate awareness of and, as appropriate, alignment with, e.g. the NIS Directive, the GDPR, review of the cyber security strategy, other CEF and Horizon 2020 cyber security projects, etc.? 9

award criteria Quality & efficiency A proposal will demonstrate its quality and efficiency through: Maturity of the proposed solution in terms of its contribution towards interoperability, connectivity, operation, and integration with the Core Service Platform - co-operation mechanisms under deployment in the project SMART 2015/1089 E.g. How the written proposal envisages the extent of integration with and use of the CSP - cooperation mechanisms? Coherence and effectiveness of the work plan E.g. Is there sufficient detail on project management, risk management and dissemination arrangements? E.g. Are the tasks described in sufficient detail for independent evaluation? Quality and relevant experience of the individual participants E.g. Are CVs provided with the proposal including experience, qualifications and industry/sector certifications? Extent to which the proposal demonstrates support from national authorities and peers E.g. Are letters of support from constituents, peers and national authorities provided? Appropriate attention to security, privacy, inclusiveness and accessibility E.g. How the written proposal addresses operational security, protection of personal data, etc.? 10

award criteria Impact & Sustainability: A proposal will demonstrate its impact & sustainability through: Demonstration of the connection of n/g CERTs/CSIRTs capabilities to the cooperation mechanisms in the SMART 2015/1089 project that will allow Member States to be prepared to respond early enough to prevent or at least to mitigate cyber security incidents that may affect their networks and information systems, making European digital networks more secure for their citizens Exploration of new avenues for cross-european and multidisciplinary methodological and experimental cooperation that include Europe-wide views, perceptions and behaviours leading to higher preparedness and better cyber security resilience Capability of long-term sustainability without EU funding Extent to which long term knowledge transfer takes place? Extent to which the actions are mainstreamed and embedded in the CSIRT operations resulting in a step change in CSIRT maturity levels? 11

Other information Call text and supporting information https://ec.europa.eu/inea/en/connecting-europe-facility/cef- telecom/apply-funding/2017-cef-telecom-call-cyber-security-cef-tc- 2017-2 Background info online: NIS Directive: http://eur-lex.europa.eu/legalcontent/en/txt/?uri=uriserv:oj.l_.2016.194.01.0001.01.eng&toc=oj: L:2016:194:TOC NIS Directive Introduction: https://ec.europa.eu/digital-singlemarket/en/network-and-information-security-nis-directive Detailed information on the Core Service Platform co-operation mechanism under the SMART 2015/1089 project is available from: csirt-csp@capgemini.com or CNECT-H1@ec.europa.eu 12

More information on the calls inea-cef-telecom-calls@ec.europa.eu inea@ec.europa.eu https://ec.europa.eu/inea/en/2017-ceftelecom-calls-proposals @inea_eu INEA

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback