EU Cyber Solidarity Act: Europe Builds a Joint Cyber Defense

1 min Reading Time

Cyberattacks know no borders – but the defensive capabilities in the EU are unevenly distributed. The EU Cyber Solidarity Act creates a joint European crisis mechanism: coordinated response to large-scale attacks, an EU-wide SOC network, and a solidarity fund for affected member states.

TL;DR

European SOC Network (ESOC): Linked national Security Operations Centers for coordinated threat detection.
Cyber Emergency Reserve: Standby services from private providers that can be activated in major incidents.
Solidarity Fund: Financial support for member states affected by large-scale attacks.
Focus on critical infrastructure: Energy, water, health, finance – the same sectors as NIS2.
Complements NIS2, does not replace it: The Solidarity Act regulates the response, NIS2 the prevention.

What the Cyber Solidarity Act Specifically Includes

The EU Cyber Solidarity Act was adopted by the EU Parliament in March 2024 and came into force in the summer of 2024. It consists of three main pillars:

European Cyber Defense Infrastructure: Establishment of a network of national and cross-border SOCs (Security Operations Centers), funded through Horizon Europe. Goal: early collective threat detection.

Cyber Emergency Mechanism: A standby framework with pre-certified private providers who can be quickly mobilized in a cyber crisis. Companies can get certified and become part of the “Cyber Reserve.”

Cyber Solidarity Review: Joint analysis and learning mechanisms after major incidents – similar to accident investigation commissions in other sectors.

How Companies Can Position Themselves

For companies, there are two relevant paths: First, as a service recipient – anyone operating critical infrastructure and becoming part of an ESOC network can access coordinated support in an emergency.

Second, as part of the Cyber Reserve – ENISA certifies incident response providers who are integrated into the European standby system. This is an opportunity for specialized IT security companies that want to operate cross-border.

Interaction with NIS2 and DORA

The Cyber Solidarity Act complements the European cybersecurity framework: NIS2 regulates prevention and minimum requirements, DORA sector-specific resilience for financial companies, and the Solidarity Act the coordinated crisis response when all else fails.

Practically: Companies that are NIS2-compliant already have most of the technical foundation for participating in ESOC networks. The Solidarity Act does not increase the requirements – it creates mechanisms when an attack is successful despite compliance.

Key Facts at a Glance

Adoption by EU Parliament: March 2024, Enforcement Summer 2024

Funding: From the Horizon Europe Program (approx. 1.1 billion Euros until 2027)

Target Group: Critical infrastructure in 18 sectors (identical to NIS2)

Cyber Reserve: Pre-certified private IR providers as the first line of defense

Coordination: ENISA as the central coordination office at the EU level

Fact: The EU Cyber Solidarity Act provides 1.1 billion Euros for building a European cyber shield with cross-border Security Operations Centers.

Fact: According to ENISA, over 10,000 cyber incidents with cross-border impact were registered in the EU in 2024 – a 25% increase compared to 2023.

Frequently Asked Questions

What is the difference between NIS2 and the Cyber Solidarity Act?

NIS2 regulates prevention: minimum requirements for security measures, reporting obligations, governance. The Solidarity Act regulates the collective response to an incident that has occurred. Both are complementary.

What is the Cyber Emergency Reserve?

A pool of pre-certified, commercial incident response providers who have been qualified by ENISA and can be quickly mobilized in major incidents – similar to a standby service at the EU level.

Can a medium-sized company benefit from this mechanism?

Directly, rather not – the mechanism primarily targets member states and critical infrastructure operators. Indirectly, yes: the improved national response capability through ESOC networks benefits everyone who relies on state cyber defense.

How is the ESOC network funded?

Primarily through Horizon Europe funds. National co-financing is provided. Member states that build and network national SOCs can apply for EU funding.