Cybersecurity: MEPs to vote on plans to strengthen EU-wide resilience 

New rules requiring EU countries to meet stricter supervisory and enforcement measures and harmonise their sanctions will be debated and voted on Thursday.

The legislation, already agreed between Parliament and Council, will set tighter cybersecurity obligations for risk management, reporting obligations and information sharing. The requirements include incident response, supply chain security, encryption, and vulnerability disclosure.

More entities and sectors will have to take measures to protect themselves. The new provisions will cover “essential sectors” such as energy, transport, banking, health, digital infrastructure, public administration and space sectors.


The original cybersecurity directive was set up in 2017. However, EU countries implemented it in different ways, thereby fragmenting the single market and leading to insufficient levels of cybersecurity.

Procedure: Ordinary legislative procedure, first reading agreement

Procedure Code: 2020/0359(COD)

Debate: Thursday, 10 November 2022

Vote: Thursday, 10 November 2022