At the EU ‘Telecommunications’ Council on Friday 6 December, the EU27 ministers responsible for digital affairs and telecommunications reached a broad consensus on the conclusions concerning the future mandate of the European Union Agency for Cybersecurity (ENISA).
For the majority of Member States, the need to strengthen the Agency’s capabilities and objectives is obvious, particularly in view of the increasingly frequent threats in the field of cybersecurity.
The Romanian minister highlighted the dangers of foreign interference in the European elections, taking as an example the very recent elections in Romania (see EUROPE 13539/10).
Several Member States took the floor to emphasise the importance of the Agency’s role in implementing legislation and new regulatory frameworks such as the NIS2 Directive.
The ‘European Cybersecurity Certification Scheme’ (EUCS) is briefly mentioned in the conclusions. The Member States are “concerned about the length of the process for selecting, developing and adopting certification systems”.
In their view, the forthcoming review of the Cybersecurity Act (CSA) should be “an opportunity to adopt a lighter, risk-based, more transparent and faster approach” to the development of these systems.
The resumption of working group discussions on the certification scheme is scheduled for January, the last having taken place in mid-June 2024.
To see the conclusions: https://aeur.eu/f/eox (Original version in French by Isalia Stieffatre)