The National Cybersecurity Agency (ACN) is the Italian cybersecurity Authority. It is responsible for safeguarding security and resilience of the national cyberspace, preventing and mitigating cyber-attacks, promoting the achievement of technological autonomy.

Among ACN’s main tasks there are the implementation of the National Cybersecurity Strategy, support public and private entities to prevent and mitigate cyber incidents, fosters Italian and European strategic autonomy in the digital sector, leads audits for cybersecurity compliance, encourage cyber culture dissemination.

The Department IV/S/2 of the Austrian Federal Ministry of the Interior (BMI) is responsible for the security of network and information systems. It supports cybersecurity efforts and leads the federal Computer Emergency Response Team (GovCERT). The department is structured into four specialized units:

• IV/S/2/a – Legal and Audit: Focuses on legal aspects and auditing within the domain of network and information systems security.
• IV/S/2/b – Cyber Situation Center, Prevention, Communication: Manages the national cyber situational picture, coordinates crisis management structures and leads cybersecurity awareness and prevention initiatives.
• IV/S/2/c – NIS Technical Facilities: Handles the technical infrastructure and operational aspects of network and information systems security.
• IV/S/2/d – Strategic Network and Information Security: Oversees strategic cybersecurity matters, including international coordination, development of national strategies.

This department plays a crucial role in ensuring the resilience and security of Austria's digital infrastructure. On the ENSOC project department IV/S/2 collaborates closely with the Austrian national CERT. The motivation to participate in the ENSOC project is to help building cross-border cyber hubs in Europe, which is essential to enhance collaboration and information sharing among EU member States and strengthening collective defense against cyber threats.

The Portuguese National Cyber Security Centre (CNCS) is Portugal’s national authority and operational coordinator in the field of cybersecurity. It works closely with state entities, operators of essential services, and digital service providers to ensure that cyberspace remains a domain of freedom, security, and justice, safeguarding all sectors of society.

The CNCS’s participation in the ENSOC project reflects its commitment to promoting the free, reliable, and secure use of cyberspace at both national and European levels. This is pursued through the continuous strengthening of national cybersecurity, international cooperation with competent authorities, and the implementation of measures and tools to anticipate, detect, respond to, and recover from incidents that could threaten the functioning of critical infrastructures or compromise European interests.

The Romanian National Cyber Security Directorate (DNSC) is the competent authority at the national level for the national civilian cyberspace, including the management of risks and cyber incidents. It is tasked with ensuring the security, confidentiality, integrity, availability, and resilience of the national civilian cyberspace and with defining and implementing the framework of strategies, policies, and regulations that support the implementation of the national vision in the field of cyber security.

The DNSC's involvement in the ENSOC project is motivated by its concern with the general development of the Security Operation Center (SOC) ecosystem at both the national and european levels, thereby aiming to facilitate the exchange of critical threat intelligence in a timely and effective fashion.

The National Cyber Security Centre (NCSC) is the Netherlands’ national authority on cybersecurity. Operating under the Ministry of Justice and Security, the NCSC plays a leading role in strengthening the digital resilience of the Dutch government, vital sectors, and the Dutch society in all its facets. NCSCs’ mission is to build a safer digital future by means of coordinating responses, fostering trusted collaboration across public and private domains and by sharing expertise.

The NCSC helps organizations prevent, detect and respond to cyber threats through knowledge, coordination, and operational support. In doing so, the NCSC showcases activities such as providing independent advice and guidance on cybersecurity risk and strategies, monitoring and analyzing threats and vulnerabilities, coordinating national incident response and crisis management, facilitating secure information exchange, and developing standards and best practices to promote secure digital ecosystems.

The NCSC operates within the framework of both European and national cybersecurity legislation. The NIS2 Directive (EU 2022/2555) strengthens cybersecurity requirements across all EU Member States. In the Netherlands, NIS2 is being implemented through the Cybersecurity Act (CbW), which formally designates the NCSC as the national authority for cybersecurity.

The NCSC actively collaborates with European partners to enhance collective capabilities in threat detection, analysis, and incident response. One of the key initiatives in this effort is the European Network of Security Operations Centres (ENSOC); a European project aimed at strengthening cross-border cybersecurity cooperation among national SOCs. As cyber threats continue to evolve, real-time threat intelligence sharing, automated incident response, and regulatory alignment have become essential elements of a resilient cybersecurity ecosystem. ENSOC addresses these needs by providing an interoperable, secure, and scalable platform that facilitates information exchange and reinforces the EU’s collective cyber resilience.

The NCSC is one of the consortium partners within ENSOC and contributes through several key roles:

• Coordination support within the consortium, ensuring effective alignment across partners.
• Lead for validation and testing activities, ensuring that ENSOC solutions meet operational and security requirements.
• Responsible for the procurement and integration of Cyber Threat Intelligence (CTI) feeds, enabling enriched and actionable intelligence sharing across the network.

Through its involvement in ENSOC, the NCSC helps strengthen both national and European cybersecurity capabilities, ensuring that the Netherlands remains a proactive and trusted partner within the EU’s cyber defence ecosystem.

The CCN-CERT, the Information Security Incident Response Capability of Spain’s National Cryptologic Centre (CCN), was established in 2006 as the Spanish National Governmental CERT. Its mission is to strengthen cybersecurity across the country by protecting classified and sensitive systems belonging to public administrations, critical organizations, and strategic companies. Acting as Spain’s national alert and response centre, CCN-CERT coordinates between incident response teams and cybersecurity operation centers to ensure a rapid and effective reaction to cyber threats.

As coordinator of the ENSOC consortium and the National Network of Cybersecurity Operations Centres (RNS), CCN-CERT plays a key role in unifying and enhancing the country’s cybersecurity ecosystem. This initiative fosters collaboration among public-sector SOCs, promotes information sharing, and connects Spain’s capabilities with European counterparts to improve early detection and collective defence against cyber incidents.

The Computer Incident Response Center Luxembourg (CIRCL) is a government-driven initiative designed to gather, review, report and respond to computer security threats and incidents.

CIRCL has led MISP development since 2011 and produces cyber threat intelligence feeds, vulnerabilities, and data enrichment services for SOCs. For inquiries about these feeds, please contact ✉️ info@circl.lu

The Government Information Security Office (GISO) is Slovenia’s competent national authority under the Information Security Act (ZInfV-1, which transposed the NIS2 Directive into Slovenian law). GISO serves as thesingle point of contact, national cybersecurity coordination hub, and the owner of the national incident response plan process. It operates at the strategic level—developing cybersecurity policy, overseeing critical entities (as defined by ZInfV-1/NIS2), coordinating national cyber resilience, and representing Slovenia in international cybersecurity forums such as ENISA and the European CSIRT Network.

As part of its structure, GISO includes the SIGOV-CERT Division, which, under ZInfV-1, has become the sectoral CSIRT responsible for the entire public administration sector—a scope that extends beyond just government systems. SIGOV-CERT receives and processes cyber incident reports, provides technical and methodological support, issues alerts, and collaborates with domestic and international CSIRTs.

In addition, GISO functionally and substantively coordinates the Cyber Defence Situational Centre. Although the Information Security Act no longer explicitly designates a 'national CSIRT', GISO performs this role in practice through its central coordination, incident oversight, and strategic authority.