Building on the review of 2013 Cybersecurity Strategy, the cybersecurity package puts forward a series of measures that will further strengthen the EU's cybersecurity structures and capabilities in a coordinated manner, with the full cooperation of the Member States and the different EU structures concerned, while respecting their competencies and responsibilities. Its implementation will make the EU better placed to face current and future cybersecurity challenges.

This Joint Communication sets out the scale of the challenge and the range of measures that the EU can take.


The EU Cybersecurity Act includes the proposal for the new mandate for ENISA – the EU cybersecurity Agency - and the establishment of the EU ICT cybersecurity certification framework.


This Blueprint sets out the objectives and modes of cooperation between the Member States and EU Institutions in responding to such incidents and crises.


The "NIS Toolkit" aims at supporting Member States in their efforts to implement the NIS Directive swiftly and coherently across the EU.


The purpose of this Staff Working Document is to present the achievements of the 2013 EU Cybersecurity Strategy.


This proposal has three specific objectives:

  • 1. Ensure that a clear, robust and technology neutral policy/legal framework is in place.
    2. Eliminate operational obstacles that hamper investigation and prosecution.
    3. Enhance prevention.


This report responds to the requirement under Article 17 of the Directive for the Commission to report to the European Parliament and the Council, assessing the extent to which the Member States have taken the necessary measures in order to comply with the Directive.