European Cybersecurity Competence Centre (ECCC)
AI-assisted content notice: this page includes AI-assisted summaries, FAQs, and glossary entries prepared for navigation purposes. Verify the underlying legal text before relying on this content.
Summary
Regulation (EU) 2021/887 establishes the European Cybersecurity Industrial, Technology and Research Competence Centre (ECCC) and a Network of National Coordination Centres to support the Union’s cybersecurity technology, industrial capacity and research. It sets the ECCC’s tasks and governance and provides a framework for coordinating and implementing cybersecurity-related funding, including under EU programmes. The ECCC also supports deployment of cybersecurity solutions and uptake of results across the Union.
Who is affected?
The ECCC, the Network of National Coordination Centres and the cybersecurity community (industry, SMEs, research and technology organisations, and other relevant stakeholders) participating in EU-funded cybersecurity activities. Member States are involved through the designation and operation of National Coordination Centres and participation in governance structures.
Scope
Establishes an EU-level competence centre and a Member State network to coordinate and support cybersecurity research, innovation, industrial policy and deployment activities funded or supported by Union programmes.
Key Points
- Creates the European Cybersecurity Industrial, Technology and Research Competence Centre (ECCC) as an EU body and sets its governance and tasks.
- Establishes a Network of National Coordination Centres designated by Member States to support and coordinate national ecosystems and EU actions.
- Supports implementation and coordination of Union financial support for cybersecurity (including research, innovation, capacity building and deployment).
- Facilitates cooperation among public authorities, industry and the research community, including support for SMEs and start-ups.
- Promotes uptake and dissemination of cybersecurity technologies and solutions across the Union and contributes to strategic planning (e.g., strategic agenda/roadmaps).
Related Regulations
Frequently Asked Questions
Who must comply with Regulation (EU) 2021/887?
The regulation primarily applies to the European Cybersecurity Competence Centre (ECCC), National Coordination Centres designated by Member States, and the broader cybersecurity community, including industry, SMEs, research and technology organisations, and other stakeholders involved in EU-funded cybersecurity activities.
What is the main purpose of the European Cybersecurity Competence Centre (ECCC)?
The ECCC is established to coordinate and support cybersecurity research, innovation, industrial policy, and deployment activities at the EU level, particularly those funded or supported by Union programmes.
What is the Network of National Coordination Centres?
This network consists of entities designated by each Member State to coordinate national cybersecurity activities, support the ECCC, and facilitate cooperation between national and EU-level initiatives.
What are the key obligations for Member States under this regulation?
Member States must designate a National Coordination Centre, participate in the governance of the ECCC, and support the coordination and implementation of EU-funded cybersecurity activities at the national level.
What types of activities does the ECCC support?
The ECCC supports research, innovation, capacity building, and deployment of cybersecurity solutions, as well as the dissemination and uptake of these solutions across the EU.
Are there penalties for non-compliance with this regulation?
The regulation does not specify direct penalties for non-compliance; however, failure to comply may result in exclusion from EU funding opportunities or participation in ECCC-coordinated activities.
How does this regulation interact with other EU cybersecurity laws?
Regulation (EU) 2021/887 complements existing EU cybersecurity frameworks, such as the NIS Directive, by focusing on research, innovation, and capacity building rather than operational security requirements.
What practical steps should organisations take to participate in ECCC activities?
Organisations should engage with their National Coordination Centre, monitor calls for proposals or funding opportunities coordinated by the ECCC, and ensure compliance with relevant eligibility and reporting requirements.
What is the governance structure of the ECCC?
The ECCC is governed by a Governing Board with representatives from Member States and the European Commission, supported by an Executive Director and a Strategic Advisory Group.
What funding mechanisms are available under this regulation?
The ECCC coordinates and implements EU financial support for cybersecurity through programmes such as Horizon Europe and the Digital Europe Programme, targeting research, innovation, and deployment projects.
Key Terms
- European Cybersecurity Competence Centre (ECCC)
- An EU body established to coordinate and support cybersecurity research, innovation, and deployment activities across the Union.
- National Coordination Centres
- Entities designated by each Member State to coordinate national cybersecurity activities and serve as a link between national stakeholders and the ECCC.
- Cybersecurity Community
- A broad group including industry, SMEs, research and technology organisations, and other stakeholders engaged in cybersecurity activities supported by the EU.
- Governing Board
- The main decision-making body of the ECCC, composed of representatives from Member States and the European Commission.
- Strategic Advisory Group
- A body that provides expert advice to the ECCC on strategic priorities and the needs of the cybersecurity community.
- Capacity Building
- Activities aimed at strengthening the skills, resources, and capabilities of organisations and individuals in the field of cybersecurity.
- Deployment Activities
- Actions focused on the implementation and uptake of cybersecurity solutions and technologies across the EU.
- Horizon Europe
- The EU’s research and innovation funding programme, which supports cybersecurity projects coordinated by the ECCC.
- Digital Europe Programme
- An EU funding programme aimed at supporting the digital transformation of Europe, including cybersecurity initiatives managed by the ECCC.
- Strategic Agenda/Roadmaps
- Documents outlining the ECCC’s long-term priorities, objectives, and planned actions in the field of cybersecurity.