Under rules adopted by the EP and the Council on 7.12. 2015, Member States are required to improve their cybersecurity capabilities and to cooperate more closely together in order to address potential security risks. The directive also requires operators of essential services in the energy, transport, banking and healthcare sectors, and providers of key digital services like search engines and cloud computing, to take appropriate security measures and report incidents to national authorities.
On 7.02.2013,the EC presented a proposal for a directive aiming at improving the security of the information systems underpinning the functioning of the internal market. The proposal was presented in connection with the joint EC and High Representative of the Union for Foreign Affairs and Security Policy Communication on a European Cybersecurity.
The EP1st reading position was adopted by 521-22-25 on 13.03.2014. Informal negotiations (EP/Council) started in October 2014 and were concluded at 6thinformal trilogue meeting on 7.12.2015. The text will have to be formally approved by the EP and the Council and then published in the EU Official Journal to enter into force. Member States will have 21 months to implement this Directive into their national laws and 6 months more to identify operators of essential services.
Rapporteur: A. Schwab (EPP)
Shadows: N. Danti(S&D), A. Guoga (ALDE), J.PAlbrecht (Greens), V. Ford (ECR)
Further information
Infographic: From malware to phishing: the top threats to your security online
Procedure file
Infographic: From malware to phishing: the top threats to your security online
Procedure file
Source : © European Union, 2016 - EP