You are here
Study on Cybersecurity in the energy sector of the Energy Community
The main objective of the study is to assess, and develop proposals for improving, the energy-specific cybersecurity capabilities in the Energy Community at national level and regional/pan-European levels within the interconnected power and gas systems, in compliance with the applicable acquis and EU practices and latest developments in developing a common framework for cybersecurity at EU level. Specific objectives of the study are: to identify and assess key weaknesses, risks and potential exposure to cyber threats in the energy systems of the Energy Community Contracting Parties and interconnected networks, to identify the regulatory framework as well as gaps for/in cybersecurity governance in the Contracting Parties, to identify provisions of the NIS Directive and Directive 2008/114/EC on the identification and designation of European critical infrastructures and the assessment of the need to improve their protection8 (“ECI Directive”) relevant for the energy sectors (including the ongoing reform discussions), and to make an impact assessment of their implementation in the Contracting Parties, to propose suitable measures for Contracting Parties to improve cybersecurity of the energy systems and interconnected networks, to propose a model of regional cooperation in managing cybersecurity risks and reporting incidents in the Energy Community and across the interconnected networks including a common cooperation platform, a common certification framework, and a common framework for research, education and training programmes, to explore possibility for participation of the Energy Community Contracting Parties in the European Union Agency for Network and Information Security (ENISA), in accordance with rules set forth in Regulation (EU) No 526/2013 concerning the European Union Agency for Network and Information Security (ENISA) and repealing Regulation (EC) No 460/20049 (including the ongoing reform discussions).