Demonstration of alignment of the Pan-European Cybersecurity Incidents Information Sharing Platform to Cybersecurity policy, regulatory and legislative advancements

Abstract

The path to the Digital Decade in Europe is realized by various governance and regulatory frameworks that aim to materialize this core European strategy. The EU cybersecurity strategy projects to safeguard this path and enable a swift but smooth transition. Arguably, EU is constantly taking actions to address cybersecurity challenges and promote cyber resilience, focusing primarily in critical sectors such as energy. This imposes significant challenges for the cybersecurity technology providers and requires a flexible, adaptive and agile design and development approach. The presented work is an evolution of the ARES2021 paper “Pan-European Cybersecurity Incidents Information Sharing Platform to support NIS Directive” that further aligns with advancements in the European Cybersecurity policy and regulations landscape. This is feasible since the development of the Incidents Information Sharing Platform (I2SP) is agile, adaptive and has continuously been driven by the advancements observed and imposed by the European cybersecurity regulatory framework. The current work showcases the I2SP design enhancements to address the latest EU cybersecurity regulatory framework updates relating to the Network Code on Cybersecurity (NCCS), NIS2 and the Cyber Resilience Act, highlighting the stringent alignment between I2SP and the EU cybersecurity strategy.