Skip to main content
Shaping Europe’s digital future logo

Joint Cyber Unit

The Joint Cyber Unit is a new platform that aims to strengthen cooperation among EU Institutions, Agencies, Bodies and the authorities in the Member States.

The EU cybersecurity eco-system does not yet have a common space to work together across different communities and fields which allow the existing networks to tap their full potential.

The EU Cybersecurity Strategy outlined the need for a Joint Cyber Unit (JCU), identifying the main problems that it would contribute to solve, its objectives and the steps needed to achieve it.

It builds on the work started with the Recommendation on a coordinated response to incidents and crises - so called Blueprint in 2017. The JCU will be set close to the Brussels offices of ENISA, the EU Agency for Cybersecurity, and CERT-EU, the Computer Emergency Response Team for the EU Institutions, bodies and agencies.

The JCU will help civilian, law-enforcement, diplomatic and cyber defence communities cooperate to prevent, deter and respond to cyberattacks. In this way, it will benefit from the expertise of all relevant actors in the cybersecurity field. Those involved will be able to act swiftly against cyber threats and work to mobilise resources for mutual assistance. 

The Commission has proposed to build the JCU through a gradual and transparent process in 4 steps:

  1. assess the organisational aspects and identify EU operational capabilities by 31 December 2021;
  2. prepare national incident and crisis response plans and roll out joint preparedness activities by 30 June 2022;
  3. operationalise the JCU by mobilising EU Rapid Reaction teams, following procedures defined in the EU incident and crisis response plan by 31 December 2022;
  4. involve private sector partners, users and providers of cybersecurity solutions and services, to increase information sharing and to be able to escalate EU coordinated response to cyber threats by June 2023.

Key actions of the JCU include:

  • setting up a physical platform built around ENISA and CERT-EU adjacent offices in Brussels;
  • establishing a virtual platform composed of tools for secure and rapid information-sharing;
  • delivering the EU cybersecurity incident and crisis response plan (based on national plans proposed in NIS2);
  • producing integrated EU cybersecurity situation reports, including information and intelligence about threats and incidents;
  • establishing and mobilising EU Cybersecurity Rapid Reaction Teams;
  • concluding memoranda of understanding for cooperation and mutual assistance;
  • concluding information-sharing as well as operational cooperation agreements with private sector companies, both user and providers of cybersecurity solutions and services; 
  • putting together an inventory of operational and technical capabilities available in the EU;
  • defining structured synergies with enhanced detection capabilities tools, notably SOCs;
  • setting a multi-annual plan to coordinate exercises and organizing joint exercise and training;
  • reporting: Interim report assessing roles and responsibilities of participants and final activity report.

These webpages will keep you updated on this gradual process.


Publication of a vacancy for the function of Executive Director - European Cybersecurity Industrial, Technology and Research Competence Centre

This is a senior manager position to lead a multidisciplinary team of professionals called to support a key priority area for the future of the European Union.

The Executive Director shall be responsible for operations and for the day-to-day management of the Centre and shall be its legal representative. The Executive Director shall be accountable to the Governing Board and perform his or her duties with complete independence within the powers assigned to her or him. The Executive Director shall be supported by the staff of the Centre.

European Cybersecurity Month (ECSM) 2021 is getting closer!

The European Cyber Security Month (ECSM) is the EU’s annual cybersecurity awareness campaign that takes place each October across Europe. The aim is to raise awareness of cybersecurity threats and promote cyber hygiene among citizens and organisations through education and sharing of good practices.

Call for Papers Privacy Symposium 2022 in Venice - International Conference on Data Protection, Regulatory Compliance, and Innovative Technologies

The Privacy Symposium is an international conference established to present and discuss original and innovative research results and technology developments related to personal data protection and compliance with data protection legislations. To this end, it brings together legal and technology experts together with researchers, data protection authorities and professionals to share their knowledge and to support international dialogue and cooperation. The Call for Papers intends to identify original research results and innovative approaches to address the challenges related to data

European Blockchain Pre-Commercial Procurement

The European Commission is looking for novel blockchain solutions for the European Blockchain Services Infrastructure. The procurement contracts have been awarded to 7 contractors and the first phase of solution design is ongoing.

Related Content

Big Picture

The Cybersecurity Strategy

The EU Cybersecurity Strategy aims to build resilience to cyber threats and ensure citizens and businesses benefit from trustworthy digital technologies.