Cybersecurity Act - Establishing the link between Standardization and Certification 

When: Tuesday, 13 February 2018
Where: Brussels - Hotel Marriott Grand Place, Rue Auguste Orts 3-7
Programmedownload the programme (pdf format)

  • CEN and CENELEC:Alina Iatan
  • ENISA: Sławomir Górniak
  • Participation
    More then 200 participants were at the conference? In view of an effective implementation of the CyberAct upon its adoption, the dialogue took place amongst policy makers, industry,standardization organizations, certification bodies, and those involved in the development of the ICT certification framework in Europe.

    Download the presentations


  • Bernhard THIES, CENELEC President
  • Luis Jorge ROMERO, Director General of ETSI
  • Steve PURSER, Head of Core Operations Department, ENISA - European Union Agency for Network and Information Security
  • EUROPEAN CYBERSECURITY ACT: how to increase trust in ICT products and services placed in the European market?
    Presentation on the European Cybersecurity Act followed by a discussion on the impact of the Act on EU security and privacy.

  • Jakub BORATYNSKI, Head of Unit, DG CONNECT H1 -Cybersecurity and data protection, European Commission
  • Hugo CORDOVA GONZALEZ-CASTILLO, Policy Officer, European Parliament (TBC)
  • Alberto MAZZOLA, Member of the European Economic and Social Committee
  • Steve PURSER, Head of Core Operations Department, ENISA
  • Cinzia MISSIROLI, Director, Standardization and Digital Solutions, CEN-CENELEC Management Centre
  • Luis Jorge ROMERO, Director General of ETSI


  • Alessandro LAZARI, IACS Component Cybersecurity Certification Framework (JRC project)
  • Jochen FRIEDRICH, Chair of the OpenForum Europe Standardisation Task Force, Technical Relations Executive - IBM
  • Sylvie WUIDART, Security Expert, Strategic Planning, Microcontrollers and Digital ICs Group, STMicroelectronics
  • Pentcho STANTCHEV, Business Development - Schneider Electric; Cybersecurity Expert - ORGALIME
  • Paul COEBERGH VAN DEN BRAAK, Chair of Free Movement of Goods Working Group – BUSINESSEUROPE; Senior Director Standardization, Philips Intellectual Property & Standards
  • Sergio LOMBAN, Business Development Manager - SGS Spain;  chair of WG 1 ‘ICT certification’ at European Cyber Security Organisation (ECSO)
  • Chiara GIOVANINI, Deputy Secretary-General, ANEC
  • Arthur VAN DER WEES, Leader of WG03 (Standardisation) working group Privacy in IoT; Co-Chair of WG04 (Policy) - AIOTI
  • Christian PRILLER, Head of Cooporate Accreditation, Standardisation and Quality Management at TÜV SÜD AG
  • CYBER STANDARDIZATION FOR PRODUCTS AND SERVICES: prospects for European and international standards within the European Cybersecurity Act

  • Walter FUMY, Chair of CEN/CENELEC/Joint Technical Committee (JTC) 13 – ‘Cybersecurity and Data Protection’;
    Chief Scientist, Bundesdruckerei GmbH
  • Alessandro GUARINO and Kai RANNENBERG, CEN/CENELEC/Joint Technical Committee (JTC) 8 – ‘Privacy management in products and services’
  • Charles BROOKSON, Chairman of the ETSI Technical Committee Cybersecurity (TC CYBER)
  • Miguel BAÑÓN, General Manager at Epoche & Espri's IT Security Evaluation and Test Facility, Convenor of ISO/IEC TC1/SC27/WG3 - ‘Security evaluation, testing and specification’
  • Andreas FUCHSBERGER, Regional Standards Officer for Central and Eastern Europe, Microsoft
  • Claire VISHIK, Senior Director- Global Cybersecurity at INTEL Corporation
  • Why
    Cybersecurity Certification – Contribution opportunities and Challenges for the European Standardization Organizations

    The proposed EU Regulation called the ‘Cybersecurity Act’, establishes a European Cybersecurity Certification Framework for ICT products and services. It specifies the essential functions and tasks of the European Network and Information Security Agency (ENISA) in the field of cybersecurity certification.

    This Act raises a number of questions regarding the standards needed to support such certification framework and the role of the different cybersecurity stakeholders.

    The conference presents the Cybersecurity certification landscape and unveiled what it means for policy makers, industry, citizens, certification bodies, and the European Standardization System.

  • At the end of the day, attendees had a clearer view about the legislative landscape and the path forward for standards to support the Cybersecurity certification framework.