The Network Code on Cybersecurity (NCCS) aims to set a European standard for the cybersecurity of cross-border electricity flows. It includes rules on cyber risk assessment, common minimum requirements, cybersecurity certification of products and services, monitoring, reporting and crisis management.
This Network Code provides a clear definition of the roles and responsibilities of the different stakeholders for each activity.
To learn more about the different components of the Network Code on Cybersecurity, watch our video series on YouTube.
Read the regulation here.
Download here the slides of the video series.
Play a role in EU e;ectricity cybersecurity: Join Cybersecurity Stakeholder Committee
ACER, in close collaboration with ENTSO-E and DSO Entity are establishing a new European Stakeholder Committee (ESC) on cybersecurity in the electricity sector. What will the cybersecurity committee do? Through this new cybersecurity committee, industry associations will cooperate with each other and with the authorities referred to in the Network Code on Cybersecurity to:
- identify problems and propose improvements to the implementation of the existing cybersecurity network code;
- recommend future revisions of the network code;
- identify whether any additional risk prevention rules may be needed for the electricity sector; and
- respond to technological developments in the sector.
By tackling these points, the cybersecurity committee will help maintain a high, common level of cyber resilience in Europe’s electricity grid and adapt policy to evolving digital risks. We invite industry associations that could offer a pan-European perspective on cybersecurity aspects of cross-border electricity flows to join.
Deadline to apply is 2 July 2025, with the first meeting planned for autumn 2025. See how to apply.
See the Terms of reference for the cybersecurity committee for electricity.