The contractual Public-Private Partnership (cPPP) on Cybersecurity
18 October 2016
Trust and Security UnitDG Communications Networks, Content and Technology,
European Commission
Pierre Chastanet
Cyberspace: a backbone of digital society & economic growth
2
Cybersecurity incidents are increasing at an alarming pace
with potentially profound effect on daily functioning of society & economy,
both online and offline
3…as well as financial theft, loss of intellectual property, data breaches, etc.
Increase
capabilities
& cooperation
Strengthen EU
Cybersecurity
industry
NIS Directive - NIS platform – ENISA - CEF
Key EU Objectives and Actions
Strengthening industrial Capabilities – €600M in H2020 (incl. €450M for the cPPP)
Cooperation on new policy initiatives – Sectorial cybersecuritystrategies
Mainstream
cybersecurity
in EU policy
The NIS Directive: objectives
Increased national cybersecurity capabilities
EU levelcooperation
Risk management & reporting
Boosting the overall online
security in Europe
Dependence on public procurement & government purchase
Lack of interoperability solutions, practices and well-functioning mechanisms of certification
Different NIS policies across MS(to be addressed by the NIS directive)
Barriers of trust for cross-border purchase
6
Cyberspace is borderless by nature…
unlike heavily
fragmentedEuropean market for ICT security
products & services due to:
What does this mean in practice?
7
The survival of strong European cybersecurity industry all together is at stake!
Cybersecurity is also an opportunity!
8
TODAY
TOMORROW
Cybersecurity contractual Public-Private Partnership (cPPP)
• Stimulate the competitiveness and innovation capacities of the digital security and privacy industry in Europe
• Ensure a sustained supply of innovative cybersecurity products and services in Europe
9
Objectives of the cPPP
10
Gather industrial and public resources to deliver innovation against a jointly-agreed strategic research and innovation roadmap.
Maximize available funds through better coordination with MS.
Focus on a few technical priorities defined jointly with industry.
Seek synergies to develop common, sector-neutral technological building blocks with maximum replication potential
Obtain economies of scale through engagement with users/demand side industries and bringing together a critical mass of innovation capacities.
Be a platform to discuss other supporting measures for the industry
11
And also…
12
Making the most of NIS cooperation mechanisms
(blueprint, information hub, high-level advisory group)
Moving towards ENISA 2.0
Increased efforts in education, training & exercises
Addressing inter-sectoral interdependencies
(ISACs, sector systemic risks assessment, guidance on cyber-risk preparedness, voluntary reporting on cyber theft of trade secrets, mainstreaming cybersecurity
across sectors)
Key public networks infrastructure resilience
13
Certification & Labelling
Scaling up investment
Stimulating SMEs
14
15
BUDGETThe EC will invest up to €450 million in this partnership, under its research andinnovation programme Horizon 2020 for the 2017-2020 calls (4 years). Cybersecuritymarket players are expected to invest three times more (€ 1350 Mio) in the next 10years (leverage factor = 3) for a total of €1800 Mio.
Contributions are expected from private investments (users/operators, suppliers,RTOs/Universities, national R&I funds, other EU funds: regional / structural, capitalventure, insurances, etc.) and public funding
A DIFFERENT PPPThe cPPP will focus on R&I, developing a SRIA and supporting its implementation in theH2020 Work Programme
The ECSO Association will tackle other industry policy aspects for the market and theindustrial / economic development
REFERENCE DOCUMENTS1. Industry proposal2. Strategic Research and Innovation Agenda (SRIA) proposal
About the Cybersecurity cPPP
4
H2020 = legal framework for the establishment of the cPPP
H2020 LEIT-ICT to focus on technology-driven digital security building blocks
and horizontal requirements
H2020 Societal Challenge 'Secure Societies' to deliver societal
benefits for users of technologies (citizens, SMEs, critical infrastructures…).
H2020 public funds to be matched by private sector investment
17
Thank you for your attention!