1.
The contractual
Public-Private Partnership
(cPPP) on Cybersecurity
18 October 2016
Trust and Security Unit
DG Communications Networks, Content and Technology,
European Commission
Pierre Chastanet

2.
Cyberspace: a backbone of
digital society & economic growth
2

3.
Cybersecurity incidents are
increasing at an alarming pace
with potentially profound effect on daily
functioning of society & economy,
both online and offline
3
…as well as financial theft, loss of intellectual property, data breaches, etc.

4.
Increase
capabilities
& cooperation
Strengthen EU
Cybersecurity
industry
NIS Directive - NIS
platform – ENISA - CEF
Key EU Objectives and Actions
Strengthening industrial
Capabilities – €600M in H2020
(incl. €450M for the cPPP)
Cooperation on new policy
initiatives – Sectorial cybersecurity
strategies
Mainstream
cybersecurity
in EU policy

5.
The NIS Directive: objectives
Increased national
cybersecurity capabilities
EU level
cooperation
Risk management &
reporting
Boosting the
overall
online
security in
Europe

6.
Dependence on public procurement
& government purchase
Lack of interoperability solutions, practices and
well-functioning mechanisms of certification
Different NIS policies across MS
(to be addressed by the NIS directive)
Barriers of trust for cross-border
purchase
6
Cyberspace is borderless by
nature…
unlike
heavily
fragmented
European market
for ICT security
products &
services due to:

7.
What does this mean in practice?
7
The survival of strong European cybersecurity industry all together is at stake!

8.
Cybersecurity is also an opportunity!
8
TODAY
TOMORROW

9.
Cybersecurity contractual Public-Private
Partnership (cPPP)
• Stimulate the
competitiveness and
innovation capacities of the
digital security and privacy
industry in Europe
• Ensure a sustained supply of
innovative cybersecurity
products and services in
Europe
9

10.
Objectives of the cPPP
10
Gather industrial and public resources to deliver innovation against a
jointly-agreed strategic research and innovation roadmap.
Maximize available funds through better coordination with MS.
Focus on a few technical priorities defined jointly with industry.
Seek synergies to develop common, sector-neutral technological building
blocks with maximum replication potential
Obtain economies of scale through engagement with users/demand side
industries and bringing together a critical mass of innovation capacities.
Be a platform to discuss other supporting measures for the industry

11.
11
And also…

12.
12
Making the most of NIS cooperation mechanisms
(blueprint, information hub, high-level advisory group)
Moving towards ENISA 2.0
Increased efforts in education,
training & exercises
Addressing inter-sectoral interdependencies
(ISACs, sector systemic risks assessment, guidance on cyber-risk preparedness,
voluntary reporting on cyber theft of trade secrets, mainstreaming cybersecurity
across sectors)
Key public networks infrastructure resilience

13.
13
Certification & Labelling
Scaling up investment
Stimulating SMEs

14.
14

15.
15

16.
BUDGET
The EC will invest up to €450 million in this partnership, under its research and
innovation programme Horizon 2020 for the 2017-2020 calls (4 years). Cybersecurity
market players are expected to invest three times more (€ 1350 Mio) in the next 10
years (leverage factor = 3) for a total of €1800 Mio.
Contributions are expected from private investments (users/operators, suppliers,
RTOs/Universities, national R&I funds, other EU funds: regional / structural, capital
venture, insurances, etc.) and public funding
A DIFFERENT PPP
The cPPP will focus on R&I, developing a SRIA and supporting its implementation in the
H2020 Work Programme
The ECSO Association will tackle other industry policy aspects for the market and the
industrial / economic development
REFERENCE DOCUMENTS
1. Industry proposal
2. Strategic Research and Innovation Agenda (SRIA) proposal
About the Cybersecurity cPPP
4

17.
 H2020 = legal framework for the establishment of the cPPP
 H2020 LEIT-ICT to focus on technology-driven digital security building blocks
and horizontal requirements
 H2020 Societal Challenge 'Secure Societies' to deliver societal
benefits for users of technologies (citizens, SMEs, critical infrastructures…).
 H2020 public funds to be matched by private sector investment
17

18.
Thank you for your attention!