As stipulated in Regulation (EU) 2019/881 (Cybersecurity Act), the EU cybersecurity certification framework lays down the procedure for the creation of EU cybersecurity certification schemes, covering ICT products, services and processes. Each scheme will specify one or more level(s) of assurance (basic, substantial or high), on the basis of the level of risk associated with the envisioned use of the product, service or process. To assist in establishing EU cybersecurity certification schemes, Regulation (EU) 2019/881 provides the modalities to set-up ad hoc working groups. The membership to these groups is foreseen to pursue broad representation across stakeholders’ communities.

Call 02/21 - EU Cybersecurity Market - CLOSED

ENISA aims to create an ad hoc working group to seek the involvement and support of stakeholders to contribute to the comprehensive coverage of ENISA outputs with suitable advice and expert advice concerning advice concerning, requirements, market actors and dependencies, market parameters, market assessment good practices.

Deadline for applications: 10th September 2021 at 12:00 EET (Athens time  zone) - expired.

More info: Ad Hoc Working Group 04 - on EU Cybersecurity Market

Call 01/21 - 5G Cybersecurity Certification - CLOSED

To enhance the framework on 5G cybersecurity and secure 5G deployment in the European Union, the European Commission requested ENISA (upon its mandate to develop cybersecurity certification schemes: Article 8 Cybersecurity Act) to develop a candidate European cybersecurity certification scheme for 5G networks (EU 5G scheme). Upon the task to prepare the candidate EU 5G cybersecurity certification scheme, ENISA launches this call for expression of interest for participation in an Ad Hoc Working Group (EU5G AHWG).

Deadline for applications 30 June 2021 at 12:00 EET (Athens time  zone) - expired

More info: Ad-Hoc Working Group on 5G Cybersecurity Certification

Call 02/19 - Cloud Services - CLOSED

The scope of this cybersecurity certification scheme will address such aspects as, stimulating the uptake of cloud services among users, user trust to cloud services and the provision of cloud services by service providers; this scheme will further support data mobility as well as compliance with the EU legal framework on the digital single market. This scheme could be further developed to meet vertical sector requirements, as necessary and in line with EU policy.

Deadline for applications: 20th January 2020, 12:00 EEST (Athens time) - expired

More info: Ad-Hoc Working Group on Cloud Services

Call 01/19 - Transposition of the SOGIS-MRA certification framework - CLOSED

In accordance with article 48(2) of Regulation (EU) 2019/881 (hereinafter, Cybersecurity Act), ENISA seeks to assist the European Commission in the preparation of a candidate cybersecurity certification scheme to serve as a successor to the existing Senior Officials Group Information Systems Security (SOG-IS) Mutual Recognition Agreement (MRA). The scope of this ad hoc working group is to support ENISA in preparing the above-mentioned draft candidate cybersecurity certification scheme.

Deadline for applications: 19th September 2019, 12:00 EEST (Athens time) - expired.

More info: Ad-Hoc Working Group on the transposition of the SOGIS-MRA