Source: European Parliament
Question for written answer E-001364/2025
to the Commission
Rule 144
Hannah Neumann (Verts/ALE)
The EU Cybersecurity Act established a European framework for cybersecurity certification and reinforced the mandate of the EU Agency for Cybersecurity (ENISA). Given the rapidly evolving threat landscape, a review of this framework and its implementation, originally scheduled for 2024, is now more urgent than ever.
The United States’ pivot away from Europe highlights the need for the EU to strengthen its own cybersecurity capabilities and reduce dependencies. Meanwhile, Europe is facing a surge in Russian hybrid attacks, with near-daily cyber incidents targeting infrastructure, institutions and democratic processes. The increase in disinformation and misinformation campaigns underscores the need to protect reliable access to information and safeguard European democracy.
A stronger, more integrated European cybersecurity market is essential for resilience, ensuring that private actors operate within a coherent framework that guarantees high security standards across all the Member States. The EU must assess whether the implementation of the EU Cybersecurity Act has been effective, and identify areas where further action is needed.
In this context, I ask the Commission:
- 1.What is the timeline for the review of the EU Cybersecurity Act?
- 2.How does the Commission plan to address the increased cybersecurity threats in the review process?
- 3.What steps is the Commission taking to ensure that the EU cybersecurity market is better integrated, and that high standards are upheld across all the Member States?
Submitted: 2.4.2025