Skip to main content
Shaping Europe’s digital future logo

The European Cybersecurity Certification Group

The European Cybersecurity Certification Group was established to help ensure the consistent implementation and application of the Cybersecurity Act.

© iStock by Getty Images -11392912672 metamorworks

About the European Cybersecurity Certification Group (ECCG)

The ECCG has the following tasks:

  1. to advise and assist the Commission in its work to ensure the consistent implementation and application of the Cybersecurity Act, in particular regarding the Union rolling work programme, cybersecurity certification policy issues, the coordination of policy approaches, and the preparation of European cybersecurity certification schemes;
  2. to assist, advise and cooperate with ENISA in relation to the preparation of a candidate scheme;
  3. to adopt an opinion on candidate schemes prepared by ENISA;
  4. to request ENISA to prepare candidate schemes;
  5. to adopt opinions addressed to the Commission relating to the maintenance and review of existing European cybersecurity certifications schemes;
  6. to examine relevant developments in the field of cybersecurity certification and to exchange information and good practices on cybersecurity certification schemes;
  7. to facilitate the cooperation between national cybersecurity certification authorities under the Cybersecurity Act through capacity-building and the exchange of information, in particular by establishing methods for the efficient exchange of information relating to issues concerning cybersecurity certification;
  8. to support the implementation of peer assessment mechanisms in accordance with the rules established in a European cybersecurity certification;
  9. to facilitate the alignment of European cybersecurity certification schemes with internationally recognised standards, including by reviewing existing European cybersecurity certification schemes and, where appropriate, making recommendations to ENISA to engage with relevant international standardisation organisations to address insufficiencies or gaps in available internationally recognised standards.

Members

The ECCG is composed of representatives of national cybersecurity certification authorities or representatives of other relevant national authorities. A member of the ECCG cannot represent more than two Member States. Stakeholders and relevant third parties may be invited to attend meetings of the ECCG and to participate in its work.

The European Cybersecurity Certification Group meetings agendas

The ECCG meets regularly, usually during plenary sessions. The agenda is proposed by the secretariat and agreed on by all members. This page is regularly updated with the agendas of the previous meetings.

List of previous meetings agendas

Latest

PRESS RELEASE |
Trade and Technology Council: Inaugural meeting agrees on important deliverables and outlines areas for future EU-US cooperation

At the first meeting of the Trade and Technology Council (TTC) in Pittsburgh, the EU and the US agreed on concrete deliverables and outlined the future scope of work. Notably, the EU and the US committed to cooperating closely on shared priorities such as export controls, foreign investment screening, critical and emerging technology standards including Artificial Intelligence, and secure supply chains including on semiconductors. They also agreed to work together on important global trade issues, such as the challenges posed by non-market economies and trade-related climate and environment

PRESS RELEASE |
The European Cybersecurity Month is kicking off: ‘Think Before U Click'

The ninth edition of the European Cybersecurity Month has kicked off and will run for the entire month of October under the motto ‘Think Before U Click'. This is an annual awareness campaign organised by the Commission, the European Union Agency for Cybersecurity (ENISA) and over 300 partners in the Member States, including local authorities, governments, universities, think tanks, NGOs and professional associations.

PRESS RELEASE |
The European Cybersecurity Competence Centre and Network is now ready to take off

The regulation establishing a new Cybersecurity Competence Centre and a Network of National Coordination Centres has entered into force this week. The Cybersecurity Competence Centre, which will be located in Bucharest, will contribute to strengthening European cybersecurity capacities and to boosting research excellence and the competitiveness of the Union's industry in the cybersecurity field.

PRESS RELEASE |
EU Cybersecurity: Commission proposes a Joint Cyber Unit to step up response to large-scale security incidents

The Commission has laid out a vision to build a new Joint Cyber Unit to tackle the rising number of serious cyber incidents impacting public services, as well as the life of businesses and citizens across the European Union. Advanced and coordinated responses in the field of cybersecurity have become increasingly necessary, as cyberattacks grow in number, scale and consequences, impacting heavily our security. All relevant actors in the EU need to be prepared to respond collectively and exchange relevant information on a ‘need to share', rather than only ‘need to know', basis.

Browse Cybersecurity 

Related Content

Big Picture

The EU cybersecurity certification framework

The EU cybersecurity certification framework for ICT products enables the creation of tailored and risk-based EU certification schemes.

Last update

3 June 2021

Print as PDF