Coordinated preparedness testing and other preparedness actions

The primary goal of this grant is to enhance cybersecurity preparedness and resilience across the European Union, particularly for entities operating in sectors of high criticality as defined by the NIS 2 Directive. The grant supports coordinated preparedness testing, including penetration testing and threat assessment, for critical infrastructure and essential entities. It also aims to provide comprehensive preparedness support services such as the development of testing scenarios, deployment of digital tools for cyber-exercises, evaluation of cybersecurity capabilities, and consulting on infrastructure security. In future calls, the grant will expand to include risk monitoring, coordinated vulnerability disclosure, and advanced training programs to further strengthen the cybersecurity posture of critical and highly critical sectors.

Eligibility for this grant is focused on competent authorities in EU Member States, such as Computer Security Incident Response Teams (CSIRTs), National Cybersecurity Authorities, Security Operation Centres, and sector-specific CSIRTs. Industry stakeholders, including Information Sharing and Analysis Centres (ISACs), start-ups, and SMEs involved in implementing the NIS 2 Directive, are also eligible. The grant targets both public and private organizations working on cybersecurity compliance and resilience, particularly those integrating with the CEF Cybersecurity Core Service Platforms.

The anticipated impact includes improved cooperation and preparedness across the EU, enhanced risk and threat assessment capabilities, and better compliance with cybersecurity regulations. The grant will foster the adoption of best practices in vulnerability management, promote continuous professional development in cybersecurity, and support the industrial uptake of new cybersecurity solutions, ultimately increasing the overall resilience of critical sectors to cyber threats.