Skip to main content
Logo

EUMSS - EU Cybersecurity certification for Managed Security Services

On 15 January 2025, the Commission adopted an amendment to the EU Cybersecurity Act enabling the future adoption of European certification schemes for ‘managed security services’. 

Certification Scheme
  • EUMSS

Understanding the context

Timeline

  1. Receiving the Request

    In line with the amended Cybersecurity Act (EU 2025/37), on 25 April 2025 the European Commission has requested ENISA to develop of a candidate European cybersecurity certification scheme on Managed Security Services.

     

  2. Identifying Experts

    After answering to the European Commission with a positive answer, ENISA launched an open call for expression of interests for experts to join the ENISA Ad-Hoc Working group on the certification of EUMSS on June 25,2025.

    Following an assessment of the applications by ENISA, the members of the Ad Hoc Working Group  were appointed by the Executive Director of ENISA.

  3. Ad Hoc Working Group

    The kick-off meeting of the ENISA Ad Hoc Working Group on EUMSS took place on 13 October 2025. The group is expected to convene on a frequent basis, including a minimum of 4 plenaries per year. However, more frequent meetings of the different Thematic Groups established to support dedicated work streams might be taking place. Most meetings take place online.