The EU Council on Monday adopted conclusions on the EU’s cybersecurity strategy for the digital decade.
‘This strategy was presented by the Commission and the high representative for foreign affairs in December 2020. It outlines the framework for EU action to protect EU citizens and businesses from cyber threats, promote secure information systems and protect a global, open, free and secure cyberspace.
The conclusions note that cybersecurity is essential for building a resilient, green and digital Europe. They set as a key objective achieving strategic autonomy while preserving an open economy. This includes reinforcing the ability to make autonomous choices in the area of cybersecurity, with the aim to strengthen the EU’s digital leadership and strategic capacities.
In its conclusions, the Council highlights several areas for action in the coming years, including:
- The plans to create a network of security operation centres across the EU to monitor and anticipate signals of attacks on networks;
- The definition of a joint cyber unit which would provide clear focus to the EU’s cybersecurity crisis management framework;
- Its strong commitment to applying and swiftly completing the implementation of the EU 5G toolbox measures and to continuing efforts made to guarantee the security of 5G networks and the development of future network generations;
- The need for a joint effort to accelerate the uptake of key internet security standards, as they are instrumental to increase the overall level of security and openness of the global internet while increasing the competitiveness of the EU industry;
- The need to support the development of strong encryption as a means of protecting fundamental rights and digital security, while at the same time ensuring the ability of law enforcement and judicial authorities to exercise their powers both online and offline;
- Increasing the effectiveness and the efficiency of the cyber diplomacy toolbox giving special attention to preventing and countering cyberattacks with systemic effects that might affect supply chains, critical infrastructure and essential services, democratic institutions and processes and undermine economic security;
- The proposal on the possible establishment of a cyber intelligence working group to strengthen EU INTCEN’s dedicated capacity in this domain;
- The importance of strengthening cooperation with international organisations and partner countries in order to advance the shared understanding of the cyber threat landscape;
- The proposal to develop an EU external cyber capacity building agenda to increase cyber resilience and capacities worldwide.
To ensure the development, implementation and monitoring of the proposals presented in the cybersecurity strategy, the Council encourages the Commission and the High Representative to establish a detailed implementation plan. The Council will also monitor the progress in the implementation of the conclusions through an action plan which will be regularly reviewed and updated.