1. Home
  2. News

EC Cybersecurity cluster 3rd meeting

The CyberNEMO project was present in the 3rd meeting of the European Cybersecurity Cluster along with INTACT, CASTOR, and MIRANDA following the meeting that took place on January 16th. This strategic gathering was scheduled to review the projects’ updates since their last meetup and align the shared goals of these leading EU-funded initiatives.

Among the various topics discussed, for CyberNEMO, the presentation of the CyberNEMO Decision Support component was an important milestone. In addition, the projects demonstrated significant interest in co-organizing a workshop in Paris this fall.

The exchange was further enriched by the introduction of three new projects to the cluster: Mediate, CoCyber and GuardAI, expanding the group’s collective expertise in securing the digital landscape.

Read More

CyberNEMO in ECSCI: Advancing Critical Infrastructure Security in Europe

CyberNEMO participates in the European Cluster for Securing Critical Infrastructures (ECSCI), a European collaborative initiative that brings together EU-funded projects and key stakeholders working on the protection and resilience of critical infrastructures.

The ECSCI cluster is creating synergies and fosters emerging disruptive solutions to security issues via cross-projects collaboration and innovation. The cluster has experienced growth, fostering a dynamic and evolving ecosystem for cybersecurity innovation in Europe.

Through its participation, CyberNEMO contributes to joint efforts on:

  • Knowledge exchange and best practices in cybersecurity for critical infrastructures
  • Alignment with European policies and regulatory frameworks (e.g. CRA, NIS2, AI Act and vertical cybersecurity standards)
  • Collaboration on interoperable and scalable security solutions
  • Joint dissemination, communication, and stakeholder engagement activities
Read More

CyberNEMO Holds its 6th General Assembly in Rome

The CyberNEMO consortium is meeting this week in Rome, Italy, for its 6th General Assembly, hosted by Engineering Ingegneria Informatica.

This plenary gathering represents an important moment in the project’s evolution, bringing together partners to review progress, align on next steps, and reinforce collaboration across the consortium in the view of the upcoming 1st half review.

Discussions during the meeting focus on key areas such as AI-driven cybersecurity, risk assessment and mitigation, system integration, and validation of technologies in complex IoT–Edge–Cloud environments. The sessions also address the project’s broader impact, including dissemination, standardisation, and engagement with stakeholders.

A central objective of this General Assembly is to advance the integration of CyberNEMO components into a cohesive framework, moving from individual developments toward interoperable and scalable solutions for securing critical infrastructures.

Beyond the technical work, the meeting provides a valuable opportunity to strengthen collaboration, ensuring alignment and continuity as the project progresses toward its next milestones.

Read More

CyberNEMO SAAM: Building a Pan-European Cyber Shield for Critical Infrastructure

CyberNEMO SAAM is a pan-European Knowledge Sharing, risk Assessment, threat Analysis and incidents Mitigation collaborative platform designed to protect Critical Infrastructures (CIs) across Europe. Operating as the federated CTI exchange backbone of the broader CyberNEMO platform, SAAM serves as a pan-European CTI hub that collects, analysis, enriches, and distributes cybersecurity intelligence among interconnected infrastructure operators, national and cross-border cybersecurity authorities and communities. By centralising cyber threat data from diverse CI sectors including energy, transport, healthcare, and finance and structuring it around the widely adopted STIX 2.1 standard, SAAM creates a common operational picture that no single organisation could achieve on its own.

Modern cyber threats do not respect sector or national boundaries. A sophisticated attack on an energy grid can swiftly ripple into transport management systems or hospital networks, creating cascading failures that isolated, manually-processed intelligence cannot prevent. SAAM addresses this gap by positioning itself as the central nervous system of European CI cybersecurity, automatically correlating cross-sector incident patterns, attributing threats to known actors, and generating timely advisories for eligible partners. Governed by the most appropriate authority within the CyberNEMO ecosystem, and fully aligned with NIS2 compliance obligations, SAAM represents a significant step forward in building the collective resilience that Europe’s critical infrastructure communities urgently need.

SAAM delivers four tightly integrated capabilities. Cross-CI Knowledge Sharing enables the seamless exchange of CTI data across sector boundaries and national borders through secure Trusted Circles at Sectoral, National, Cross-Border, and Pan-European level utilizing interoperable standards such as STIX v2.1, TAXII 2.1 and Traffic Light Protocol (TLP) for controlled dissemination. SAAM’s Systemic Risk Analysis Engine applies automated analysis over incoming cyberthreat reports to score, correlate, and contextualise vulnerabilities and attacks. In addiiton, SRAE analysis contributes to the identification of coordinated attacks taking into account potential cascading effects. This contributes to SAAM’s enhanced State Awareness which gives operators and authorities a real-time, holistic view of the threat landscape across interconnected CI domains. Finally, SAAM’s Incident Mitigation translates enriched intelligence into actionable guidance, enabling CSIRTs and CI owners to coordinate responses swiftly and effectively before threats cascade across sectors.

Read More

CyberNEMO Laison Activity with COcyber, CYBERACTIONING, ENSEMBLE, Resilmesh

CyberNEMO has initiated a series of liaison activities with four European cybersecurity projects COcyber, CYBERACTIONING, ENSEMBLE, and Resilmesh towards building a unified and resilient European cybersecurity landscape.

The 1st meeting took place on the 18th of March 2026, with the participation of Andreas Papadakis and Ilias Seitanidis on behalf of the CyberNEMO coordinator (Synelixis).

The activity focuses on four pillars of collaboration:

  • Joint Dissemination, broadening projects’ visibility across the European research community and beyond.
  • Synchronised Advocacy, coordinating the communication campaigns to lead the conversation on cybersecurity and defense challenges at the EU level.
  • Event Co-hosting, co-organising presentations at major industry forums and jointly hosting specialised events that showcase the projects’ collective expertise.
  • Knowledge Exchange into a cybersecurity ecosystem.

Together, the four projects bring complementary strengths: COcyber bridges civilian and defence cybersecurity communities, CyberACTIONING advances cutting-edge network security research. ENSEMBLE focuses on collaborative cybersecurity education and training and ResilMesh tackles resilience in complex networked environments.

Read More

CyberNEMO Exploitation Strategy overview

Europe’s cybersecurity landscape is under mounting pressure. The EU cybersecurity market, already valued at approximately €30 billion in 2023, is growing at a compound annual rate of 9–11%, driven by an escalating threat environment, accelerating digital transformation, and tightening regulation under frameworks such as NIS2, the Cyber Resilience Act, and the AI Act. Ransomware attacks targeting critical infrastructure are rising by over 25% annually, while nation-state actors, supply-chain compromises, and the convergence of IT and Operational Technology (OT) networks continue to expand the attack surface. Across key verticals such as energy, healthcare, cloud, edge computing, IoT, and data management. CyberNEMO’s market analysis reveals a consistent pattern suggesting that demand is surging, solutions are fragmenting, and the gap between security investment and actual resilience is widening. Particularly underserved are small and medium enterprises, operators of critical infrastructure burdened by legacy systems, and the growing edge computing segment, where cybersecurity spending is already struggling to keep pace with infrastructure deployment.

CyberNEMO’s competitive advantage rests on five interconnected pillars. As an EU-funded initiative built on EU-sovereign infrastructure, it is fully aligned with the EU Cybersecurity Strategy, directly advancing Europe’s goal of strategic digital autonomy. This is reinforced by a unique public-private partnership model that grants privileged access to CERT and regulatory bodies alongside established relationships with critical infrastructure operators. The platform’s credibility is further substantiated by its validation across six diverse pilot sectors, providing concrete cross-domain applicability evidence that spans energy, healthcare, media, agrifood, logistics, and fintech. By anchoring its open-source core within the Eclipse Foundation, CyberNEMO fosters community-driven development that actively reduces vendor lock-in, encouraging broad adoption while preserving transparency and trust. Finally, the platform has been designed from the outset with regulatory foresight, embedding compliance with NIS2, the Critical Entities Resilience Directive (CER), the AI Act, and the Cyber Resilience Act directly into its architecture — positioning it as a ready-made solution for organisations navigating Europe’s increasingly demanding cybersecurity regulatory landscape.

CyberNEMO, delivers an end-to-end, zero-trust cybersecurity framework purpose-built for the Cloud-Edge-IoT-Data computing continuum. Following IEEE 42010 methodology, stakeholder concerns were systematically mapped to architectural viewpoints. Each viewpoint addresses specific concerns through defined architectural perspectives, conventions, and models covering viewpoints such as development, process, user, business and security ones. CyberNEMO has identified twelve Key Exploitable Results (KERs) that offer capabilities ranging from real-time AI-driven anomaly detection and explainable AI (XAI) to interoperable and standardized threat intelligence sharing, micro-services auditing and certification, and federated risk assessment across borders.

CyberNEMO’s multi-dimensional approach which combines financial self-sufficiency through subscription services, institutional permanence through Eclipse Foundation governance, regulatory foresight and community network effects through open-source engagement aims to position it to deliver lasting value to European Critical Infrastructure and citizens well beyond the project’s formal completion.

Read More

2nd CyberNEMO, INTACT, CASTOR, and MIRANDA European Cybersecurity Cluster online meeting

The CyberNEMO project joined forces with INTACT, CASTOR, and MIRANDA discussing the possibility of collaboration between projects meeting of the European Cybersecurity Cluster, held on January 16th. This collaborative exchange was designed to identify synergies, explore joint opportunities, and align shared goals among the participating projects. The gathering united specialists and leaders from all four initiatives, each focused on strengthening European cybersecurity through pioneering research and practical application.

CyberNEMO presented the current progress and the objectives. CybeNEMO focuses on strengthening resilience and risk preparedness across critical infrastructure and supply chains. It provides a comprehensive, end-to-end security stack—ranging from Zero-Trust Network Access to AI-driven Situation Perception, Comprehension & Protection (SPCP)—while facilitating collaborative auditing and a pan-European platform for shared threat analysis (SAAM).

As the discussions progressed, participants identified several common points for collaboration. They expressed strong interest in pursuing future joint calls and events. In this context, a cross-project event collaborative calendar was established aiming to enhance the inter-project synergy visibility through conferences and workshops that will promote the innovative work carried out by the EU funded projects in the Cybersecurity domain.

The meeting concluded with the partners planning their next actions and scheduling their upcoming meetings.

Read More

CyberNEMO Presented at CONASENSE Workshop – WPMC 2025

On November 10, 2025, the CyberNEMO project was featured at the CONASENSE Workshop, held in Sofia (Bulgaria) as part of the 28th International Symposium on Wireless Personal Multimedia Communications (WPMC 2025).

Javier Serrano, from the Universidad Politécnica de Madrid (UPM) and Technical Programme Chair of the workshop, delivered an invited talk titled:
“Securing Distributed Media Workflows: CyberNEMO’s Zero Trust Approach for Edge-Cloud Multimedia Production and Delivery.”

The presentation introduced CyberNEMO’s vision to bring end-to-end security and trust to the Edge–Cloud–IoT computing continuum, by means of an open-source metasystem for resilience, threat detection, and risk mitigation. The talk focused on the UPM-led media trial, which validates CyberNEMO’s solutions in the context of real-time, distributed content production and delivery.

Two real-world scenarios were presented:

  1. Collaborative content production, where IoT-based media is captured and processed over edge and cloud.
  2. Secure content distribution, ensuring low-latency and protected delivery to end users.

CyberNEMO applies Zero Trust principles, AI-powered intrusion detection, and federated orchestration to safeguard these workflows while maintaining performance and scalability.

The session concluded with an open discussion on the applicability of CyberNEMO’s architecture to other domains such as health, mobility and critical infrastructure, and its relevance for future 6G security paradigms.

CyberNEMO thanks the CONASENSE community for the opportunity to contribute to this forward-looking dialogue.

Read More

CyberNEMO Strengthens Ties with European Cybersecurity Projects to Accelerate Joint Innovation

The CyberNEMO project joined forces with INTACT, CASTOR, and MIRANDA for the first meeting of the European Cybersecurity Cluster, held on October 6th. This collaborative exchange was designed to identify synergies, explore joint opportunities, and align shared goals among the participating projects. The meeting brought together experts and coordinators from all four initiatives, each dedicated to advancing Europe’s cybersecurity resilience through cutting-edge research, innovation, and real-world implementation.

CyberNEMO vision and objectives have been presented. Specifically, the project aims to enhance resilience, risk preparedness, awareness, detection, and mitigation in Critical Infrastructures and supply chains. The project delivers full-stack, end-to-end protection—from low-level Zero-Trust Network Access to human-AI explainable Situation Perception, Comprehension & Protection (SPCP) tools—alongside collaborative microservices for auditing, certification, and accreditation, and a pan-European platform for shared risk assessment, threat analysis, and incident mitigation (SAAM).

As the discussions progressed, participants identified several promising avenues for collaboration. They expressed strong interest in pursuing future joint calls and complementary research initiatives, while INTACT and CyberNEMO agreed to maintain their dialogue during their upcoming plenary meetings, which will take place concurrently at the same venue. Another key area of potential cooperation is standardization, where the exchange of expertise among projects could significantly accelerate the development of harmonized frameworks and enhance interoperability across the European cybersecurity landscape.

The meeting concluded with a shared understanding that collaboration is essential to advancing Europe’s cybersecurity landscape in an increasingly interconnected world.

Read More