Cluster team

Developing Romania's operational and technical capacity to become a pole of competitiveness in cybersecurity at European and global level.

ICI

Development, implementation and delivery of services in its field of activity, such as computer networking, cloud computing and cybersecurity;

UMC

Maritime University of Constanta is a higher education institution based in Mircea cel Batran 104, Constanta, Romania

Admiral Expert Consulting

Combating Financial Crime

Education and awareness for financial-banking institutions

Financial IT security research

Armed Synapse

Armed Synapse is an IT security start-up providing IT security services to its customers

Arxia

Development, consultancy and training in various IT areas

ATTACK Simulator

We are a new Romanian startup that aims to create a culture of security in every company. We teach security awareness through automated phishing simulations

BitSentinel

Strengthen your resilience to cyber-attacks with independent professional penetration testing, managed security services, incident response, code review or cybersecurity consulting.

BlackBullet

Software development, security penetration services, vulnerability management

Cyber Dacians

Offensive penetration, consultancy and advanced protection services

Factide

We help businesses reach their potential. Our digital marketing campaigns are more than ordinary, we exceed our clients’ expectations in communication, collaboration, creativity and campaign success.

Prodefence

Cybersecurity services, including Information Security Auditing, Security Policies and Procedures and Cyber Education

TruInfoSec

Creating and developing your organization’s security posture. From policy to operations. From technology to people.

Zamolxis

Complete services for digitization of companies’ operations as well as specialized cyber security services.

Zerotak

Comprehensive cyber security services, with a team with extensive experience in cyber penetration testing and incident response.

Working groups

Initiative and main areas

Currently, CYSCOE focuses on Education and NIS

Got an idea for a new initiative? We encourage all current and potential members to come up with concrete suggestions and plans that we can implement.

Education

The education of both ordinary users and cybersecurity professionals is key to the healthy development of the field. New questions arise every day and raising awareness of them is imperative for a better response.

NIS

The European NIS Directive has ushered in a new regulated era of our times. CYSCOE deals with NIS audit and implementation services and is looking for new ways to streamline implementations and audits for better application in the environments of organizations in need.

Education

Cyber security education is essential in the digital world we live in.

Every day, millions of people use the internet and technology to communicate, shop, manage their finances and carry out everyday tasks. However, the more we use these technologies, the greater the risk of becoming a victim of cybercrime.

Relevance for both individuals and organizations

For business people and organizations, cybersecurity education is equally important. The more digitally connected an organization is, the more vulnerable it is to cyber attacks. Thus, employees should be trained in the proper use of online devices, networks and services, as well as in the development of sound cyber security policies and procedures.

Cyber security education is the ability to protect our personal and financial information.

This can include learning how to use strong passwords and two-factor authentication, how to identify phishing messages and how to protect your devices from malware attacks.

One of the key directions for CYSCOE

Why is it needed?

To develop a systematic approach in the field of cyber security education, aiming both at raising awareness and developing protection within companies and institutions, as well as at building specific knowledge and specialization of staff in companies and institutions.

NIS audit and implementation

European Directive with major impact

The NIS Directive (Network and Information Security) is a European Union directive that was adopted in 2016 and sets common cybersecurity rules for EU Member States. It was transposed into national law in each Member State by May 9, 2018.

Companies will have to comply with the obligations imposed by the NIS Directive depending on the nature of their activities

Operators of essential digital services and digital service providers are those directly concerned by the directive, but other companies could also be affected to some extent, depending on the nature of their activities.

The NIS Directive imposes a number of obligations on operators of essential digital services and digital service providers

These obligations include:

  • Identification and assessment of cyber security risks;
  • Taking appropriate cyber security measures and ensuring business continuity in case of cyber security incidents;
  • Notifying the competent authorities in the event of a major cyber security incident.
One of the key directions for CYSCOE

Why is it needed?

Translating the laws into concrete activities, technical implementations and organizational processes is more than challenging but at the same time, more than necessary.

The implementation of the NIS Directives should help to increase the level of cybersecurity in businesses and ensure the protection of the EU’s critical digital infrastructure, but some additional investment may be needed to meet the requirements.