The DETANGLE cybersecurity project was launched in Athens with the aim of helping key sectors in the EU cope with complex cybersecurity regulations.
This initiative aims to strengthen the effective implementation of the NIS2 Directive and its cybersecurity regulations in key sectors within the European Union, such as energy, healthcare, transport and digital infrastructure.
We also examine compliance with two other key EU regulations: the Cyber Resilience Act (CRA) and the Cyber Security Act (CSA).
The total budget of the initiative, coordinated by ITML, is close to €7 million and co-funded by the European Cybersecurity Competence Center (ECCC).
Why is it so important to follow EU cybersecurity regulations?
In the interconnected landscape of the 2020s, the European Union’s move towards strict cybersecurity regulation is no longer a matter of choice, but a strategic necessity for the following reasons:
protect important sovereignty
By enforcing these regulations, the EU ensures technological sovereignty. Cyber threats ignore national borders, so vulnerabilities in one member state’s power grid or hospital systems can spread throughout the Union.
Standardizing security will eliminate the “weakest link” that foreign adversaries and cybercriminals can exploit to destabilize Europe’s economy.
Economic stability and consumer confidence
Compliance is a powerful market signal. Cybersecurity regulations ensure that the financial sector can withstand and recover from digital disruption, preventing system collapse.
For companies, following these rules doesn’t just mean avoiding hefty fines (which can reach 10 million euros or 2% of global turnover). It’s about building certified brands that consumers can trust with their data.
Supply chain integrity
As of early 2026, the EU is increasing its focus on ICT supply chains. The EU mandates “security by design” to ensure that products reaching citizens are not pre-installed with vulnerabilities or backdoors from high-risk third-country suppliers.
This proactive stance will transform cybersecurity from a reactive IT cost to a fundamental pillar of Europe’s security and democratic resilience.
Addressing challenges in implementing EU cybersecurity regulations
The NIS2 Directive tightens requirements for risk management, incident reporting, supply chain security and certification processes, posing significant challenges for small and medium-sized enterprises (SMEs) and national authorities.
Additionally, several important challenges need to be addressed, including:
Fragmentation among Member States Lack of technical capacity within national institutions High adaptation costs for small and medium-sized enterprises Risks associated with global supply chains Limited incident reporting culture Emerging technological threats related to artificial intelligence, IoT, and quantum computing
DETANGLE addresses these issues by developing a series of innovative solutions, including an AI-based incident management platform that enhances detection, response, and collaboration between entities.
Creating a toolkit for regulatory oversight and enforcement
This effort also includes the creation of the NIS2 Compliance Tracker, a tool for gap analysis, compliance monitoring, reporting, and cybersecurity training.
Additionally, DETANGLE offers a certification support framework that includes self-assessment modules and access to an up-to-date knowledge base.
The project will also develop a toolkit to monitor and enforce CRA, the EU’s new law that mandates cybersecurity regulations for products with digital elements, with a focus on compliance verification, certification, and risk notification.
Strengthening cyber resilience across the EU
Overall, DETANGLE will strengthen cyber resilience across the EU, reduce compliance costs, strengthen cross-border cooperation and provide direct support to SMEs and national authorities.
Source link
