European Cybersecurity Certification Framework – ENISA roleSession
Securing network and information systems in the European Union has been deemed as a key objective in an effort to keep the EU online economy functional and secure. The purpose of the EU cybersecurity certification framework under the Regulation (EU) 2019/881 (“EU Cybersecurity Act”) is to establish and maintain the trust and security on cybersecurity products, services and processes. Drawing up cybersecurity certification schemes at EU level aims at providing criteria to carry out conformity assessments to establish the degree of adhrence of products, services and processes against specific requirements. The mission of ENISA in the area of the EU cybersecurity certification framework is outlined as follows: “To pro-actively contribute to the emerging EU framework for the ICT certification of products and services and carry out the drawing up of candidate certification schemes in line with the Cybersecurity Act, and additional services and tasks”.