On March 12,The EU Parliament passed into law its new Information and Communication Technology cybersecurity certification, also known as the Cybersecurity Act, which will enable EU nations to monitor the cyber resilience of Network and information systems and telecommunications networks and services sold and operated within their juridictions
The EU Cybersecurity Act, which is already informally agreed with member states, underlines the importance of certifying critical infrastructure, including energy grids, water, energy supplies and banking systems in addition to products, processes and services. By 2023, the Commission shall assess whether any of the new voluntary schemes should be made mandatory.
The Cybersecurity Act also provides for a permanent mandate and more resources for the EU Cybersecurity Agency, ENISA.
Key elements of the new EU cybersecurity certification framework