BETA

92 Amendments of José BLANCO LÓPEZ related to 2018/0328(COD)

Amendment 115 #
Proposal for a regulation
Recital 1 a (new)
(1a) Cybercrime is a fast growing threat to the Union, its citizens and its economy. In 2017, 80 % of the European companies have experienced at least one cyber incident. The Wannacry-attack in May 2017 affected more than 150 countries and 230 000IT-systems and had significant impacts on critical infrastructures such as hospitals. This underlines the necessity for the highest cybersecurity standards and holistic cybersecurity solutions, involving people, products, processes and technology in the Union, as well as for European leadership in the matter, and for Digital autonomy.
2019/01/17
Committee: ITRE
Amendment 116 #
Proposal for a regulation
Recital 1 b (new)
(1b) This regulation contributes to the protection of the environment through the protection of environment-relevant infrastructures and networks such as nuclear infrastructures.
2019/01/17
Committee: ITRE
Amendment 117 #
Proposal for a regulation
Recital 1 c (new)
(1c) This regulation contributes to the achievement of the Sustainable Development Goals, in particular to the goal “Industry, innovation and infrastructure”.
2019/01/17
Committee: ITRE
Amendment 118 #
Proposal for a regulation
Recital 1 d (new)
(1d) The Competence Centre and the Cybersecurity Competence Community should, in order to foster European competitiveness and highest cybersecurity standards internationally, seek the exchange on cybersecurity solutions, products and standards with the international community.
2019/01/17
Committee: ITRE
Amendment 119 #
Proposal for a regulation
Recital 5
(5) Substantial disruption of network and information systems can affect individual Member States and the Union as a whole. The highest level of security of network and information systems throughout the Union is therefore essential for the smooth functioning of the society and economy, i.e. the internal market. At the moment, the Union depends on non-European cybersecurity providers. However, it is in the Union’s strategic interest to ensure that it retains and develops essential cybersecurity technological capacities to secure its Digital Single Market, and in particular to protect critical networks and information systemsthe protection of data and critical networks and information systems of European citizens and companies, including critical infrastructures for the functioning of society such as transport systems, health systems and banking, and the Digital Single Market and to provide key cybersecurity services.
2019/01/17
Committee: ITRE
Amendment 120 #
Proposal for a regulation
Recital 6
(6) A wealth of expertise and experience in cybersecurity research, technology and industrial development exists in the Union but the efforts of industrial and research communities are fragmented, lacking alignment and a common mission, which hinders competitiveness and effective protection of critical data, networks and systems in this domain. These efforts and expertise need to be pooled, networked and used in an efficient manner to reinforce and complement existing research, technology, skills and industrial capacities at Union and national levels.
2019/01/17
Committee: ITRE
Amendment 121 #
Proposal for a regulation
Recital 6 a (new)
(6a) SMEs are crucial actors in the European cybersecurity sector that can provide cutting-edge solutions due to their agility. SMEs that are not specialised in cybersecurity however, are also prone to be more vulnerable to cyber incidents due to high investment and knowledge requirements to establish effective cybersecurity solutions. It is therefore necessary that the Competence Centre and the Cybersecurity Competence Network provide special support for SMEs by facilitating their access to knowledge and training in order to allow them to secure themselves sufficiently and to allow those who are active in cybersecurity to contribute to the European leadership in the field.
2019/01/17
Committee: ITRE
Amendment 122 #
Proposal for a regulation
Recital 8
(8) The Competence Centre should be the Union’s main instrument to develop European leadership in cybersecurity, to pool investment in cybersecurity research, technology and industrial development, to support SMEs in gathering expertise in cybersecurity and to implement relevant projects and initiatives together with the Cybersecurity Competence Network. It should deliver cybersecurity-related financial support from the Horizon Europe and, Digital Europe programmes and the European Defence Fund for actions related to defence, and should be open to the European Regional Development Fund and other programmes where appropriate. This approach should contribute to creating synergies and coordinating financial support related to cybersecurity research, innovation, technology and industrial development and avoiding duplication.
2019/01/17
Committee: ITRE
Amendment 126 #
Proposal for a regulation
Recital 9
(9) Taking into account that the objectives of this initiative can be best achieved if all Member States or as many Member States as possible participacontribute, and as an incentive for Member States to take part, only Member States who contribute financially to the administrative and operational costs of the Competence Centre should hold voting rights.
2019/01/17
Committee: ITRE
Amendment 127 #
Proposal for a regulation
Recital 12
(12) National Coordination Centres should be selected by Member States and approved by the Competence Centre. In addition to the necessary administrative capacity, Centres should either possess or have direct access to cybersecurity technological expertise in cybersecurity, notably in domains such as cryptography, ICT security services, intrusion detection, system security, network security, software and application security, or human and socie, societal and environmental aspects of security and privacy. They should also have the capacity to effectively engage and coordinate with the industry, the public sector, including authorities designated pursuant to the Directive (EU) 2016/1148 of the European Parliament and of the Council23 , and the research community in order to establish a continuous public- private dialogue on cybersecurity. _________________ 23 Directive (EU) 2016/1148 of the European Parliament and of the Council of 6 July 2016 concerning measures for a high common level of security of network and information systems across the Union (OJ L 194, 19.7.2016, p. 1).
2019/01/17
Committee: ITRE
Amendment 130 #
Proposal for a regulation
Recital 14
(14) Emerging technologies such as artificial intelligence, Internet of Things, high-performance computing (HPC) and quantum computing, blockchain and concepts such as secure digital identities create at the same time new challenges for cybersecurity as well as offer solutions. Assessing and validating the robustness of existing or future ICT systems will require testing security solutions against attacks run on HPC and quantum machines. The Competence Centre, the Network and the Cybersecurity Competence Community should help advance and disseminate the latest cybersecurity solutions and research to bridge the valley of death of innovation of cybersecurity technologies and services. At the same time the Competence Centre and, the Network and the Cybersecurity Competence Community should be at the service of developers and operators in critical sectors such as transport, energy, health, financial, government, telecom, manufacturing, defence, and space to help them solve their cybersecurity challenges.
2019/01/17
Committee: ITRE
Amendment 135 #
Proposal for a regulation
Recital 14 a (new)
(14a) Due to the fast changing nature of cyber threats and cybersecurity, the Union needs to be able to adapt fast and continuously to new developments in the field. Hence, the Competence Centre, the Cybersecurity Competence Network and the Cybersecurity Competence Community should be flexible enough to ensure the required reactivity. They should facilitate solutions that help entities to be able to constantly build capability to enhance their and the Union’s resilience.
2019/01/17
Committee: ITRE
Amendment 136 #
Proposal for a regulation
Recital 14 b (new)
(14b) The Competence Centre should have the objectives to establish European leadership and expertise in cybersecurity, and by that guarantee the highest security standards in the Union, ensure the protection of data, information systems, networks and critical infrastructures in the Union, create new high-quality jobs in the area, prevent brain drain from the European cybersecurity experts to third countries, and add European value to the already existing national cybersecurity measures.
2019/01/17
Committee: ITRE
Amendment 137 #
Proposal for a regulation
Recital 15
(15) The Competence Centre should have several key functions. First, the Competence Centre should facilitate and help coordinate the work of the European Cybersecurity Competence Network and nurture the Cybersecurity Competence Community. The Centre should drive the cybersecurity technological agenda and pool, share and facilitate access to the expertise gathered in the Network and the Cybersecurity Competence Community, and to cybersecurity infrastructure. Secondly, it should implement relevant parts of Digital Europe and Horizon Europe programmes by allocating grants, typically following a competitive call for proposals. Thirdly, the Competence Centre should facilitate joint investment by the Union, Member States and/or industr, training opportunities and awareness raising programmes in line with the Digital Europe Programme for citizens and businesses to overcome the skill gap by the Union, Member States and/or industry. It should pay special attention to the enabling of SMEs in the area of cybersecurity.
2019/01/17
Committee: ITRE
Amendment 141 #
Proposal for a regulation
Recital 16
(16) The Competence Centre should stimulate and support the long-term strategic cooperation and coordination of the activities of the Cybersecurity Competence Community, which would involve a large, open, interdisciplinary and diverse group of European actors involved in cybersecurity technology. That Community should include in particular research entities, supply-side industries, and demand -side industries including SMEs, and the public sector. The Cybersecurity Competence Community should provide input to the activities and work plan of the Competence Centre and it should also benefit from the community- building activities of the Competence Centre and the Network, but otherwise should not be privileged with regard to calls for proposals or calls for tender.
2019/01/17
Committee: ITRE
Amendment 144 #
Proposal for a regulation
Recital 17
(17) In order to respond to the needs of the public sector and both demand and supply side industries, the Competence Centre’s task to provide cybersecurity knowledge and technical assistance to the public sector and industries should refer to both ICT products and services and all other industrial and technological products and solutions in which cybersecurity is to be embedded.
2019/01/17
Committee: ITRE
Amendment 147 #
Proposal for a regulation
Recital 18
(18) Whereas the Competence Centre and the Network should strive to achieve synergies between the cybersecurity civilian and defence spheres in line with the Union goals as laid out by Common Foreign and Security Policy and the Permanent Structured Cooperation, projects financed by the Horizon Europe Programme will be implemented in line with Regulation XXX [Horizon Europe Regulation], which provides that research and innovation activities carried out under Horizon Europe shall have an exclusive focus on civil applications. Actions enhancing such synergies shall therefore be co-funded through the European Defence Fund.
2019/01/17
Committee: ITRE
Amendment 149 #
Proposal for a regulation
Recital 19
(19) In order to ensure structured and sustainable collaboration, the relation between the Competence Centre and the National Coordination Centres should be based on a contractual agreement that should be harmonised on European level.
2019/01/17
Committee: ITRE
Amendment 155 #
Proposal for a regulation
Recital 21 a (new)
(21a) In order to avoid duplication and to ensure the most efficient establishment of cybersecurity expertise in the Union, the Competence Centre, the Network and the Cybersecurity Competence Community should act coherently, consistently and complementary with ENISA, the “Cybersecurity Act”(COM(2017)0477) and the European Standardisation Organisations, bearing in mind that ENISA should continue fulfilling its strategic objectives especially in the field of cybersecurity certification as defined in the “Cybersecurity Act” while the Competence Centre should act as an operational body in cybersecurity.
2019/01/17
Committee: ITRE
Amendment 159 #
Proposal for a regulation
Recital 25
(25) In order for the Competence Centre to function properly and effectively, the Commission and the Member States should ensure that persons to be appointed to the Governing Board have appropriate professional expertise and experience in functional areas and that gender balance is ensured. The Commission and the Member States should also make efforts to limit the turnover of their respective Representatives on the Governing Board in order to ensure continuity in its work.
2019/01/17
Committee: ITRE
Amendment 163 #
Proposal for a regulation
Recital 27
(27) The Competence Centre should have an Industrial and Scientific Advisory Board as an advisory body to ensure regular dialogue with the private sectorand public sector, including SMEs, consumers’ organisations and other relevant stakeholders from all parts of the Union. The Industrial and Scientific Advisory Board should focus on issues relevant to stakeholders and bring them to the attention of the Competence Centre’s Governing Board. The composition of the Industrial and Scientific Advisory Board and the tasks assigned to it, such as being consulted regarding the work plan, should ensure sufficient representation of the above-mentioned stakeholder groups in the work of the Competence Centre.
2019/01/17
Committee: ITRE
Amendment 165 #
Proposal for a regulation
Recital 28
(28) The Competence Centre and its activities should benefit from the particular expertise and the broad and relevant stakeholders’ representation built through the contractual public-private partnership on cybersecurity during the duration of Horizon2020, through its Industrial and Scientific Advisory Board. and the pilot projects under Horizon2020 on the Cybersecurity Competence Network, through its Industrial and Scientific Advisory Board. The Competence Centre and Industrial and Scientific Advisory Board should, if appropriate, consider replications of existing structures, for example as working groups.
2019/01/17
Committee: ITRE
Amendment 166 #
Proposal for a regulation
Recital 33 a (new)
(33a) In order to ensure uniform conditions for the implementation of this Regulation, implementing powers should be conferred on the Commission when provided for by this Regulation. Those powers should be exercised in accordance with Regulation (EU) No 182/2011 of the European Parliament and of the Council
2019/01/17
Committee: ITRE
Amendment 167 #
Proposal for a regulation
Recital 34
(34) Since tThe objectives of this Regulation, namely the development of European leadership in cybersecurity through retaining and developing Union’s cybersecurity technological and industrial capacities, increasing the competitiveness of the Union’s cybersecurity industry and turning cybersecurity into a competitive advantage of other Union industries, cannot be sufficiently achieved by the Member States due the fact that existing, limited resources are dispersed as well as due to the scale of the investment necessary, but can rather by reason of avoiding unnecessary duplication of these efforts, helping to achieve critical mass of investment and ensuring that public financing is used in an optimal way be better achieved at Union level. In addition, only actions on the European level can ensure the highest level of cybersecurity in all Member States and thus close security gaps existing in some Member States that create security gaps for the whole Union. Hence, the Union may adopt measures, in accordance with the principle of subsidiarity as set out in Article 5 of the Treaty on European Union. In accordance with the principle of proportionality as set out in that Article, this Regulation does not go beyond what is necessary in order to achieve that objective.
2019/01/17
Committee: ITRE
Amendment 168 #
Proposal for a regulation
Article 1 – paragraph 2
2. The Competence Centre shall contribute to the implementation of the cybersecurity part of the Digital Europe Programme established by Regulation No XXX and in particular actions related to Article 6 of Regulation (EU) No XXX [Digital Europe Programme] thereof and, of the Horizon Europe Programme established by Regulation No XXX and in particular Section 2.2.6 of Pillar II of Annex I. of Decision No XXX on establishing the specific programme implementing Horizon Europe – the Framework Programme for Research and Innovation[ref. number of the Specific Programme], and of the European Defence Fund established by Regulation(EU) No XXX for actions related to defence.
2019/01/17
Committee: ITRE
Amendment 174 #
Proposal for a regulation
Article 2 – paragraph 1 – point 1
(1) ‘cybersecurity’ means theall activities necessary to protection of network and information systems, their users, and otheraffected persons againstfrom cyber threats;
2019/01/17
Committee: ITRE
Amendment 176 #
Proposal for a regulation
Article 2 – paragraph 1 – point 2
(2) ‘cybersecurity products and solutions’ means ICT products, services or processes with the specific purpose of protecting data, network and information systems, their users and affected persons from cyber threats;
2019/01/17
Committee: ITRE
Amendment 181 #
Proposal for a regulation
Article 3 – paragraph 1 – point a
(a) retain and develop the cybersecurity technological and industrial capacities and expertise necessary to secure and further the protection of data of European citizens and companies, critical infrastructures for the functioning of society such as transport systems, health systems, banking, and its Digital Single Market;
2019/01/17
Committee: ITRE
Amendment 182 #
Proposal for a regulation
Article 3 – paragraph 1 – point b a (new)
(ba) develop European leadership in cybersecurity and ensure the highest cybersecurity standards throughout the Union reinforcing its Digital autonomy;
2019/01/17
Committee: ITRE
Amendment 183 #
Proposal for a regulation
Article 3 – paragraph 1 – point b b (new)
(bb) reinforce the trust of citizens, consumers and businesses in the digital world, and therefore contributing to the goals of the Digital Single Market Strategy;
2019/01/17
Committee: ITRE
Amendment 184 #
Proposal for a regulation
Article 3 – paragraph 1 – point b c (new)
(bc) increase the uptake of cybersecurity products and solutions developed within the Union;
2019/01/17
Committee: ITRE
Amendment 185 #
Proposal for a regulation
Article 3 – paragraph 1 – point b d (new)
(bd) raise awareness on cybersecurity and reduce the skill gap in cybersecurity in the Union
2019/01/17
Committee: ITRE
Amendment 187 #
Proposal for a regulation
Article 3 a (new)
Article 3 a Coherence, consistency and complemenetarity In implementing this Regulation, consistency, synergies and complementarity with the “Cybersecurity Act” (COM(2017)0477), the European Standardisation Organisations, European bodies and institutions as referred to in Art. 10 of this Regulation, other relevant Programmes of Union action and relevant Union policies shall be ensured. Unnecessary duplications shall be avoided.
2019/01/17
Committee: ITRE
Amendment 190 #
Proposal for a regulation
Article 4 – paragraph 1 – point 2
2. contribute to the implementation of the cybersecurity part of the Digital Europe Programme established by Regulation No XXX26 and in particular actions related to Article 6 of Regulation (EU) No XXX [Digital Europe Programme] and, of the Horizon Europe Programme established by Regulation No XXX27 and in particular Section 2.2.6 of Pillar II of Annex I. of Decision No XXX on establishing the specific programme implementing Horizon Europe – the Framework Programme for Research and Innovation[ref. number of the Specific Programme] and of the European Defence Fund established by Regulation (EU) No XXX. and of other Union programmes when provided for in legal acts of the Union]; _________________ 26 [add full title and OJ reference] 27 [add full title and OJ reference]
2019/01/17
Committee: ITRE
Amendment 194 #
Proposal for a regulation
Article 4 – paragraph 1 – point 3 – point a
(a) having regard to the state-of-the-art cybersecurity industrial and research infrastructures and related services , acquiring, upgrading, operating and making available such infrastructures and related services to a wide range of users across the Union from industry, including particular SMEs, the public sector and the research and scientific community;
2019/01/17
Committee: ITRE
Amendment 196 #
Proposal for a regulation
Article 4 – paragraph 1 – point 3 – point b
(b) having regard to the state-of-the-art cybersecurity industrial and research infrastructures and related services, providing support to other entities, including financially, to acquiring, sharing, upgrading, operating and making available such infrastructures and related services to a wide range of users across the Union from industry, including particular SMEs, the public sector and the research and scientific community;
2019/01/17
Committee: ITRE
Amendment 197 #
Proposal for a regulation
Article 4 – paragraph 1 – point 3 – point c
(c) providing cybersecurity knowledge and technical assistance to industry, research institutions and public authorities, in particular by supporting actions aimed at facilitating access to the expertise available in the Network and the Cybersecurity Competence Community;
2019/01/17
Committee: ITRE
Amendment 200 #
Proposal for a regulation
Article 4 – paragraph 1 – point 3 – point c a (new)
(ca) operating as a one stop shop for cyber security solutions financed through other programmes like InvestEU or the Single Market Programme, in particular for SMEs;
2019/01/17
Committee: ITRE
Amendment 202 #
Proposal for a regulation
Article 4 – paragraph 1 – point 3 – point c b (new)
(cb) bringing together stakeholders from industry, trade unions, academia, research organisations and public entities to ensure long-term cooperation on developing and implementing cybersecurity products and solutions, including pooling and sharing of resources and information regarding such products and solutions if appropriate;
2019/01/17
Committee: ITRE
Amendment 206 #
Proposal for a regulation
Article 4 – paragraph 1 – point 4 – point a
(a) stimulating the whole innovation cycle of cybersecurity and bridging the valley of death of innovation by enhancing cybersecurity research, development and the uptake of Unionmarket uptake cybersecurity products and holistic solutions by public authorities and user industries in the Union;
2019/01/17
Committee: ITRE
Amendment 213 #
Proposal for a regulation
Article 4 – paragraph 1 – point 4 – point d
(d) providing financial support and technical assistance to cybersecurity start- ups and SMEs to connect to potential markets and to attract investment, enhance expertise on cybersecurity in these companies and to attract investment to be able to implement cybersecurity products and solutions and/or to become competitive players in the field;
2019/01/17
Committee: ITRE
Amendment 215 #
Proposal for a regulation
Article 4 – paragraph 1 – point 5 – point a
(a) supporting further development, pooling and sharing of cybersecurity skills and competences, where appropriate together with relevant EU agencies and bodies including ENISA and supporting the objective on advanced digital skills of the Digital Europe Programme where appropriate.
2019/01/17
Committee: ITRE
Amendment 221 #
Proposal for a regulation
Article 4 – paragraph 1 – point 6 – point b
(b) support large-scale research and demonstration projects in next generation cybersecurity technological capabilities, in collaboration with the industry and, research institutions, public sector and authorities, including the Network;
2019/01/17
Committee: ITRE
Amendment 223 #
(c) support research and innovation for standardisation in cybersecurity technology in cooperation with the European Standardisation Organisations;
2019/01/17
Committee: ITRE
Amendment 226 #
Proposal for a regulation
Article 4 – paragraph 1 – point 7 – point c
(c) bringing together stakeholders, to foster synergies between civil and defence cyber security research and markets, development of cybersecurity products and solutions, and markets; in line with the Union goals as laid out by Common Foreign and Security Policy and the Permanent Structured Cooperation;
2019/01/17
Committee: ITRE
Amendment 229 #
8a. provide special support to SMEs by facilitating their access to knowledge and training through tailored access to the deliverables of the Competences Centres in order to allow them to secure themselves sufficiently and to allow those who are active in cybersecurity to become more competitive and to contribute thereby to the European leadership in the field.
2019/01/17
Committee: ITRE
Amendment 236 #
Proposal for a regulation
Article 6 – paragraph 4
4. The nominated National Coordination Centre shall have the capability to support the Competence Centre and the Network in fulfilling their mission laid out in Article 3 of this Regulation. They shall possess or have direct access to technological expertise in cybersecurity and be in a position to effectively engage and coordinate with industry, the public sector and, the research community and citizens.
2019/01/17
Committee: ITRE
Amendment 237 #
Proposal for a regulation
Article 6 – paragraph 5
5. The relationship between the Competence Centre and the National Coordination Centres shall be based on a contractual agreement harmonised on Union level and signed between the Competence Centre and each of the National Coordination Centres. The agreement shall provide for the rules governing the relationship and division of tasks between the Competence Centre and each National Coordination Centre.
2019/01/17
Committee: ITRE
Amendment 239 #
Proposal for a regulation
Article 6 – paragraph 5 a (new)
5a. The Commission may, by means of implementing acts, define the elements of the contractual agreements referred to in paragraph 5 of this Article, including their format. Those implementing acts shall be adopted in accordance with the advisory procedure referred to in Article - 45.
2019/01/17
Committee: ITRE
Amendment 241 #
Proposal for a regulation
Article 7 – paragraph 1 – point b
(b) facilitating the participation of industry, in particular for SMEs, and other actors at the Member State level in cross- border projects;
2019/01/17
Committee: ITRE
Amendment 242 #
Proposal for a regulation
Article 7 – paragraph 1 – point b a (new)
(ba) incentivising cross-border- projects, particularly for SMEs;
2019/01/17
Committee: ITRE
Amendment 244 #
Proposal for a regulation
Article 7 – paragraph 1 – point c a (new)
(ca) cooperating closely with National Standardisation Organisations to ensure the uptake of existing standards and to involve all relevant stakeholders, particularly SMEs, in setting new standards.
2019/01/17
Committee: ITRE
Amendment 245 #
Proposal for a regulation
Article 7 – paragraph 1 – point e
(e) seeking to establish synergies with relevant activities at the national and, regional and local level;
2019/01/17
Committee: ITRE
Amendment 247 #
Proposal for a regulation
Article 7 – paragraph 1 – point g
(g) promoting and disseminating the relevant outcomes of the work by the Network, the Cybersecurity Competence Community and the Competence Centre at national or, regional or local level;
2019/01/17
Committee: ITRE
Amendment 249 #
Proposal for a regulation
Article 8 – paragraph 1
1. The Cybersecurity Competence Community shall contribute to the mission of the Competence Centre as laid down in Article 3 and enhance, pool, share and disseminate cybersecurity expertise across the Union.
2019/01/17
Committee: ITRE
Amendment 250 #
Proposal for a regulation
Article 8 – paragraph 2
2. The Cybersecurity Competence Community shall consist of industry from the demand- and supply-side, including SMEs, the European Standardisation Organisations, associations of users, academic and non-profit research organisations, and associations as well as public entities and other entities dealing with operational and technical matters. It shall bring together the main stakeholders with regard to cybersecurity technological and industrial capacities in the Union. It shall involve National Coordination Centres as well as Union institutions and bodies with relevant expertise. as referred to in Art.10 of this regulation.
2019/01/17
Committee: ITRE
Amendment 263 #
Proposal for a regulation
Article 8 – paragraph 4
4. The Competence Centre shall accredit entities established under national law as members of the Cybersecurity Competence Community after an harmonised assessment made by the National Coordination Centre of the Member State and the Competence Centre where the entity is established, on whether that entity meets the criteria provided for in paragraph 3. An accreditation shall not be limited in time but may be revoked by the Competence Centre at any time if it or the relevant National Coordination Centre considers that the entity does not fulfil the criteria set out in paragraph 3 or it falls under the relevant provisions set out in Article 136 of Regulation XXX [new financial regulation].
2019/01/17
Committee: ITRE
Amendment 264 #
Proposal for a regulation
Article 8 – paragraph 4 a (new)
4a. National Coordination Centres of the Member States shall aim to achieve a balanced representation of stakeholders in the Community, including SMEs.
2019/01/17
Committee: ITRE
Amendment 265 #
Proposal for a regulation
Article 8 – paragraph 4 b (new)
4b. The Commission may, by means of an implementing act, further specify the criteria provided for in paragraph 3 and the procedures for assessing and accrediting entities that meet those criteria. That implementing act shall be adopted in accordance with the advisory procedure referred to in Article -45.
2019/01/17
Committee: ITRE
Amendment 268 #
Proposal for a regulation
Article 9 – paragraph 1 – point 5 a (new)
(5a) encourage Community members that are manufacturers and service providers to certify their products and services under certification schemes adopted under the Cybersecurity Act.
2019/01/17
Committee: ITRE
Amendment 271 #
Proposal for a regulation
Article 10 – paragraph 2
2. Such cooperation shall take place within the framework of working arrangements agreed between the Competence Centre and the respective Union institution, body, office or agency. Those arrangements shall be submitted to the prior approval of the Commission, as well as for information to the European Parliament.
2019/01/17
Committee: ITRE
Amendment 275 #
Proposal for a regulation
Article 12 – paragraph 1
1. The Governing Board shall be composed of one representative of each Member State, two representatives of the European Parliament and five representatives of the Commission, on behalf of the Union.
2019/01/17
Committee: ITRE
Amendment 280 #
Proposal for a regulation
Article 12 – paragraph 3
3. Members of the Governing Board and their alternates shall be appointed in light of their knowledge in the field of technologycybersecurity technology or research as well as of relevant managerial, administrative and budgetary skills. Gender balance shall be taken into account. The Commission and the Member States shall make efforts to limit the turnover of their representatives in the Governing Board, in order to ensure continuity of the Board’s work. The Commission and the Member States shall aim to achieve a balanced representation between men and women on the Governing Board.
2019/01/17
Committee: ITRE
Amendment 288 #
Proposal for a regulation
Article 12 – paragraph 7
7. The European Agency for Network and Information Security (ENISA) and the Industrial and Scientific Advisory Board shall be a permanent observers in the Governing Board, providing it with advice. The Governing Board shall have the utmost regard to the views expressed by ENISA. Due to its experience in the field, ENISA shall be especially consulted for research-related projects.
2019/01/17
Committee: ITRE
Amendment 292 #
Proposal for a regulation
Article 13 – paragraph 3 – point e a (new)
(ea) adopt the working arrangements referred to in Article 10(2).
2019/01/17
Committee: ITRE
Amendment 295 #
Proposal for a regulation
Article 13 – paragraph 3 – point l
(l) promote the Competence Centre globally, so as to raise its attractiveness and make it an internationally renowned world-class body for excellence in cybersecurity;
2019/01/17
Committee: ITRE
Amendment 296 #
(qa) adopt transparency rules for the Competence Centre;
2019/01/17
Committee: ITRE
Amendment 297 #
Proposal for a regulation
Article 13 – paragraph 3 – point r
(r) adopt an anti-fraud and anti- corruption strategy that is proportionate to the fraud and corruption risks having regard to a cost-benefit analysis of the measures to be implemented, as well as adopt adequate protection measures for whistleblowers;
2019/01/17
Committee: ITRE
Amendment 303 #
Proposal for a regulation
Article 14 – paragraph 1
1. The Governing Board shall elect a Chairperson and a Deputy Chairperson from among the members with voting rights, for a period of two years, taking into account gender balance. The mandate of the Chairperson and the Deputy Chairperson may be extended once, following a decision by the Governing Board. If, however, their membership of the Governing Board ends at any time during their term of office, their term of office shall automatically expire on that date. The Deputy Chairperson shall ex officio replace the Chairperson if the latter is unable to attend to his or her duties. The Chairperson shall take part in the voting.
2019/01/17
Committee: ITRE
Amendment 318 #
Proposal for a regulation
Article 16 – paragraph 3
3. The Executive Director shall be appointed by the Governing Board from a list of candidates proposed by the Commission, following an open, non- discriminatory and transparent selection procedure.
2019/01/17
Committee: ITRE
Amendment 324 #
Proposal for a regulation
Article 17 – paragraph 2 – point s
(s) prepare an action plan following-up conclusions of internal or external audit reports, as well as investigations by the European Anti-Fraud Office (OLAF) and reporting on progress twice a year to the Commission, the European Parliament and regularly to the Governing Board;
2019/01/17
Committee: ITRE
Amendment 326 #
Proposal for a regulation
Article 18 – paragraph 1
1. The Industrial and Scientific Advisory Board shall consist of no more than 1625 members. The members shall be appointed by the Governing Board according to an open, transparent and non-discriminatory procedure from among the representatives of the entities of the Cybersecurity Competence Community. In the determination of its members, existing European cybersecurity organisations shall be particularly taken into consideration. The Governing Board shall further ensure the representation from supply- and demand- side industry, SMEs, the public sector and research organisations.
2019/01/17
Committee: ITRE
Amendment 331 #
Proposal for a regulation
Article 18 – paragraph 2
2. Members of the Industrial and Scientific Advisory Board shall have expertise either with regard to cybersecurity research, industrial development, professional servicecybersecurity training and education, industrial development, offering or successfully implementing professional cybersecurity services or products or the deployment thereof. The requirements for such expertise shall be further specified by the Governing Board.
2019/01/17
Committee: ITRE
Amendment 334 #
Proposal for a regulation
Article 18 – paragraph 4
4. The term of office of members of the Industrial and Scientific Advisory Board shall be threefour years. That term shall be renewable.
2019/01/17
Committee: ITRE
Amendment 336 #
Proposal for a regulation
Article 18 – paragraph 5
5. Representatives of the Commission and of the European Network and Information Security Agency mayshall participate in and support the works of the Industrial and Scientific Advisory Board.
2019/01/17
Committee: ITRE
Amendment 339 #
Proposal for a regulation
Article 19 – paragraph 2
2. The Industrial and Scientific Advisory Board mayshall advise the Governing Board on the establishment of working groups on specific issues relevant to the work of the Competence Centre where necessary under the overall coordination of one or more members of the Industrial and Scientific Advisory Board.
2019/01/17
Committee: ITRE
Amendment 340 #
Proposal for a regulation
Article 19 – paragraph 2 a (new)
2a. The Industrial and Scientific Advisory Board shall have observer status in the Governing Board to be able to provide regular advice to the Governing Board.
2019/01/17
Committee: ITRE
Amendment 345 #
Proposal for a regulation
Article 20 – paragraph 1 – introductory part
The Industrial and Scientific Advisory Board shall regularly advise the Competence Centre in respect of the performance of its activities and shall:
2019/01/17
Committee: ITRE
Amendment 348 #
Proposal for a regulation
Article 20 – paragraph 1 – point 1
(1) provide to the Executive Director and the Governing Board strategic advice and input for the strategic orientation and operations of the Competence Centre as far as industry and science is concerned, and for drafting the work plan and multi- annual strategic plan within the deadlines set by the Governing Board;
2019/01/17
Committee: ITRE
Amendment 350 #
Proposal for a regulation
Article 20 – paragraph 1 – point 3
(3) promote and collect feedback on the work plan and multi-annual strategic plan of the Competence Centre and advise the Governing Board on how to improve the Competence Centre’s strategic orientation and operation according to this feedback.
2019/01/17
Committee: ITRE
Amendment 352 #
Proposal for a regulation
Article 21 – paragraph 1 – point b a (new)
(ba) An amount from the European Defence Fund for defence-related actions of the Competence Centre, including for administrative costs such as costs that the Competence Centre may incur when acting as a project manager for actions carried out under the European Defence Fund.
2019/01/17
Committee: ITRE
Amendment 353 #
Proposal for a regulation
Article 21 – paragraph 2
2. The maximum Union contribution shall be paid from the appropriations in the general budget of the Union allocated to [Digital Europe Programme] and, to the specific programme implementing Horizon Europe, established by Decision XXX and to the European Defence Fund.
2019/01/17
Committee: ITRE
Amendment 354 #
Proposal for a regulation
Article 21 – paragraph 4
4. The Union financial contribution from Digital Europe and from Horizon Europe shall not cover the tasks referred to in Article 4(8)(b). These may be covered by financial contributions from the European Defence Fund.
2019/01/17
Committee: ITRE
Amendment 360 #
Proposal for a regulation
Article 22 – paragraph 4
4. The Commission may terminate, proportionally reduce or suspend the Union’s financial contribution to the Competence Centre if the participating Member States do not contribute, contribute only partially or contribute late with regard to the contributions referred to in paragraph 1. The Commission’s termination, reduction or suspension of the Union’s financial contribution shall be proportionate in amount and time to the reduction, termination or suspension of the Member States’ contributions.
2019/01/17
Committee: ITRE
Amendment 362 #
Proposal for a regulation
Article 30 – paragraph 1
1. The Competence Centre shall take appropriate measures to ensure that, when actions financed under this Regulation are implemented, the financial interests of the Union are protected by the application of preventive measures against fraud, corruption and any other illegal activities, by regular and effective checks and, if irregularities are detected, by the recovery of the amounts wrongly paid and, where appropriate, by effective, proportionate and dissuasive administrative sanctions.
2019/01/17
Committee: ITRE
Amendment 363 #
Proposal for a regulation
Article 31 – paragraph 7
7. The staff of the Competence Centre shall be gender balanced and consist of temporary staff and contract staff.
2019/01/17
Committee: ITRE
Amendment 364 #
Proposal for a regulation
Article 34 – paragraph 2 – point c a (new)
(ca) Articles 22 [Ownership of results], 23 [Ownership of results] and 30 [Application of the rules on classified information] Regulation No XXX [European Defence Fund] shall apply to participation in all defence-related actions by the Competence Centre, when provided for in the Work plan, the grant of non- exclusive licenses may be limited to third parties established or deemed to be established in Members States and controlled by Member States and/or nationals of Member States.
2019/01/17
Committee: ITRE
Amendment 365 #
Proposal for a regulation
Article 35 – paragraph 1
1. The Competence Centre shall carry out its activities with athe highest level of transparency.
2019/01/17
Committee: ITRE
Amendment 366 #
Proposal for a regulation
Article 35 – paragraph 2
2. The Competence Centre shall 2. ensure that the public and any interested parties are given appropriate, objective, reliable and easily accessible information in due time, in particular with regard to the results of its work. It shall also make public the declarations of interest made in accordance with Article 41.
2019/01/17
Committee: ITRE
Amendment 367 #
Proposal for a regulation
Article 38 – paragraph 3
3. The evaluation referred to in paragraph 2 shall include an assessment of the results achieved by the Competence Centre, having regard to its objectives, mandate and tasks. If the Commission considers that the continuation of the Competence Centre is justified with regard to its assigned objectives, mandate and tasks, tasks, effectiveness and efficiency, it may propose that the duration of the mandate of the Competence Centre set out in Article 46 be extended.
2019/01/17
Committee: ITRE
Amendment 368 #
Proposal for a regulation
Article 42 – paragraph 1
The Competence Centre Governing Board shall adopt rules for the prevention and management of conflicts of interest in respect of its members, bodies and staff, including the Executive Director. Those rules shall contain the provisions intended to avoid a conflict of interest in respect of the representatives of the members serving in the Governing Board as well as the Scientific and Industrial Advisory Board in accordance with Regulation XXX [new Financial Regulation].
2019/01/17
Committee: ITRE
Amendment 370 #
Proposal for a regulation
Article 45 a (new)
Article 45 a Committee procedure 1. The Commission shall be assisted by a committee. That committee shall be a committee within the meaning of Regulation (EU) No 182/2011. 2. Where reference is made to this paragraph, Article 4 of Regulation (EU) No182/2011 shall apply.
2019/01/17
Committee: ITRE