cyberwatching,eu addresses the DS-05 call by defining and promoting a pragmatic approach to implement and maintain an EU Observatory to monitor R&I initiatives on cybersecurity & privacy, throughout EU & Associated Countries. These initiatives will be clustered, with a cluster tool, and themes identified, leading to an online catalogue of services for cybersecurity & privacy, showcasing market uptake and advancing EU sustainable competitiveness. A supply & demand marketplace of EU cybersecurity products & services, as well as the inclusion of an end-users’ club, ensures that perspectives of SMEs as well as other relevant stakeholders are properly taken account of. Ultimately, a cybersecurity & privacy ecosystem will be created, offering prime and guided access to the cyberwatching.eu catalogue of services & marketplace & ensuring feedback in terms of effectiveness & usability of research results. The cyberwatching.eu consortium is domain-skilled & complementary. Trust-IT: Expert SME in communicating ICT innovation, developing cybersecurity tools & go-to-market strategies. The University of Oxford: Academic Centre of Excellence in CyberSecurity Research. ICT Legal: Legal expert in the field, Advisor Member & Scientific Director of the European Privacy Association (EPA). DigitalSMEAlliance: An association representing the interests of ICT SMEs in EU. CONCEPTIVITY: SME experts in fighting cyber-crime and cyber-terrorism. AEI Ciberseguridad: A CyberSecurity Innovation Cluster. AON: #1 rated risk services firm, insurance broker, experienced in cyber risk management. An influential External Advisory Group passionate about cybersecurity & privacy supports the consortia. Main Outputs: Continuously updated observatory & R&I online catalogue, cluster tool, 4 concertation meetings, 4 annual workshops, 10 regional SME workshops, 10 webinars, 4 cluster reports, 2 white papers, 2 roadmaps, sustainability through cybersecurity & privacy marketplace.

WISER delivers a cyber-risk management framework able to assess, monitor and mitigate the risks in real time, in multiple industries. WISER incorporates socio-economic impact aspects, building on current state of the art methodologies and tools, and leveraging best practices from multiple industries and international initiatives (e.g: NIS). WISER aims at implementing an impressive series of 9 short experiments, in the form of Early Assessment Pilots (EAPs) to test the resilience of different risk management frameworks (taken from different industries and intended broadly) with regards to both traditional and advanced cybersecurity threats. The EAPs allow taking elements that work best in cybersecurity risk management from different frameworks, to then build and implement an advanced risk management system that will be tested & validated in 3 Full- Scale Pilots (FSPs) – with different, high-impact instantiations in the financial services and insurance industry and in the energy field – to demonstrate market acceptance, as well as scalability of a risk management framework for cybersecurity. The WISER framework will ensure cyber risk management becomes an integral part to good business practice in both critical infrastructure & process owners and ICT-intensive SMEs by offering two delivery modes: a pre-packaged solution for addressing basic cyber risk management needs (i.e. SMEs), and a Risk Platform as a Service (RPaaS) mode of operation of the platform, intended for critical infrastructures or highly complex cyber systems requiring the implementation of special controls within the ICT system to be monitored. Ultimately, WISER implements on-demand service composition and ignites innovative assurance models, also from the point of view of premiums determination targeting. Significant outcomes of the project are also the RPaaS business model, the community of end-users, and the multi-industry synergy & standardization strategy.

CYBERWISER.EU pragmatically addresses, in the DS-07-2017 call, the urgent need to count on highly-skilled, multi-disciplined cybersecurity professionals, given the increasingly aggressive cyber-landscape that Europe and the world is facing. CYBERWISER.EU will be an educational, collaborative, real-time civil cyber range platform where cybersecurity competitions will take place, making it the EU’s reference, authoritative, independent cybersecurity platform for professional training. Users can play the role of attackers and/or defenders in different scalable and configurable scenarios, composed of a set of virtual resources representing a company ICT infrastructure. The platform will be completely web-based, to facilitate adoption, collaborative support from end-users and continuous upgrade. CYBERWISER.EU expands and builds on the results and users community of the H2020 IA named WISER [2015-2017], thereby providing a jump-start situation from a consolidated raising awareness and past investment point of view. The 9 domain-skilled partners from 7 European Countries bring relevant assets to the project and are complementary and include 3 full-scale pilots (2 of which in critical infrastructures), viz.: 1. energy distribution; 2. railroad transport; 3. High Education, in the specific context of a University Master course on cybersecurity. An influential Stakeholder Expert Board (SEB) supports the consortium. Main Outputs: An Innovative, fully integrated cyber range platform; economic risk models attack patterns with mitigation measures; specialised training documentation with methodology; 3 Full-scale Pilots; one Open Pilot Stream targeting 500+ individuals from at least 5 different verticals; 750+ trained professionals; Sustainability model & business plan. High visibility through 4 workshops, 2 hackathons, 6 webinars, presence at 50+ specialised events. Profiled database of 2000+ records from 11 stakeholder groups.

An efficient asset management process is needed to ensure cost-effectiveness, in planning, delivery, operation and maintenance of large infrastructures or infrastructures network. Infrastructure asset management generally focuses on the later stages of a facility’s life cycle, specifically maintenance, rehabilitation, and replacement. However, a process of efficient asset management must define methods and tools for asset tracking, management of maintenance activity, determine the life cycle and replacement costs of the assets, assistance in determining funding strategies, optimizing capital investments in operation and maintenance, and help with the replacement of assets. Currently, the procurement, design, construction, exploitation and public communication to the final users and society regarding to the land transport infrastructures are: • not multimodal, not cross-assets, but focused on individual assets. • not correctly linked, not being able to exchange information by different stakeholders. • lack of a common risk based approach and the implementation of resilient concepts throughout the whole life cycle The aim of the proposal is to establish a common framework for governance, management and finance of transport infrastructure projects in order to ensure the best possible return from limited investment funds in transport infrastructures The main objective of RAGTIME is to develop, demonstrate and validate an innovative management approach and to lay out a whole system planning software platform, based on standard multiscale data models, able to facilitate a holistic management throughout the entire lifecycle of the infrastructure, providing an integrated view of risk based approach, implementing risk based models, resilient concepts and mitigation actions, with specific reference to climate change related threats perspective, and monitored with smart systems, in order to optimize ROI, management, guarantee LOS and improve resilience through maintaining the service.

PANACEA will deliver people-centric cybersecurity solutions in healthcare. The Partners will execute on a leanly-orchestrated research workplan, which envisages continuous involvement of the end-user Partners at three European health care centres, including also devices utilised in remote care & homecare settings. Ultimately, PANACEA delivers two toolkits for cyber security assessment and preparedness of Healthcare ICT infrastructures and connected devices: the Solution Toolkit and the Delivery Toolkit. The first one comprisesfour technological tools (for dynamic risk assessment & mitigation, secure information sharing, security-by-design & certification, identification & authentication) and three organisational tools (for training & education, resilience governance, secure behaviours nudging). The second one, specifically supporting adoption of the solution toolkit, comprises two tools (methodology to evaluate the ROI of cybersecurity interventions, guidelines to adopt the solution toolkit and implement other ex-ante mitigation actions). The toolkit will benefit from ninePANACEA ambitious research goals, achieved by moving beyond the current state of the art in the strategic areas of dynamic risk assessment & mitigation (threat modelling, attack modelling, response management, visual analytics), blockchain for secure information sharing, identification/authentication (cryptographic authentication protocols, biometric recognition/digital identity, IoMT identification), secure behaviours decision models and influencers. Impact creation will be supported by designing and executing on an effective communication, dissemination and exploitation strategy involving all partners, from project onset. The PANACEA Consortium is committed, competent and complementary. The Consortium is led by a private hospital, supported by 3 research organisations, 3 large enterprises, 5 SMEs. Severalend-user scenarios, developed in Italy, Crete and Ireland, will provide a solid test-bed.