CDE Almería - Centro de Documentación Europea - Universidad de Almería

Centro de Documentación Europea de la Universidad de Almería

To enhance EU’s cyber resilience by enabling the future adoption of European certification schemes for ‘managed security services’, member states’ representatives (Coreper) reached a common position on the proposed targeted amendment of the EU’s cybersecurity act (CSA) of 2019.

‘Managed security services’, provided to customers by specialised companies, are crucial for the prevention, detection, response, and recovery from cybersecurity incidents. They can consist of, for example, detection or response to incidents, penetration testing or security audits, or consultancy.

Main objectives of the Commission proposal

Submitted together with a proposal for an EU cyber solidarity act to strengthen cybersecurity capacities in the EU, the targeted amendment to the CSA aims to include European cybersecurity certification schemes for ‘managed security services’ in the scope of the 2019 CSA regulation.

This amendment will therefore enable the establishment of European certification schemes for such services. It will help to increase their quality and comparability, foster the emergence of trusted cybersecurity service providers, and avoid fragmentation of the internal market given that some member states have already started the adoption of national certification schemes for managed security services.

Embedded SIM ecosystem, security risks and measures. March 2023

The Council’s amendments

The Council’s position contains the following main amendments to the Commission proposal:

  • it clarifies the definition of ‘managed security services’ and the alignment with the revised network information systems (‘NIS 2’) directive
  • the text aligns the security objectives of these certification schemes with the security objectives of other schemes under the current cybersecurity act
  • the text includes modifications in the annex to the cybersecurity act, which contains a list of requirements to be met by conformity assessment bodies
  • a number of technical and drafting modifications have been introduced to make sure that all the relevant provisions of the current CSA regulation apply also to managed security services

Next steps

Today’s agreement on the Council’s common position (“negotiating mandate”) will allow the Spanish presidency to enter into negotiations with the European Parliament (“trilogues”) on the final version of the proposed legislation.

SOURCE: PRESS RELEASE – EU COUNCIL

Publicaciones relacionadas:

Commission welcomes G7 leaders’ agreement on Guiding Principles and a Code of Conduct on Artificial Intelligence bandera españa europaSeptember infringement proceedings package concerning Spain: main decisions Intensified judicial response to serious cross-border crimes Smuggling Network Connected to four deaths at sea dismantled in Spain Afghanistan: EU’s position and next steps

“This is a space for debate. All comments, for or against publication, that are respectful and do not contain expressions that are discriminatory, defamatory or contrary to current legislation will be published”.

Reader Interactions

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.