Establishes the organizational structures, policies, and processes needed to manage and oversee cybersecurity activities effectively. This function ensures that leadership is engaged, roles and responsibilities are defined, and cybersecurity efforts align with legal and regulatory requirements.

Focuses on understanding and managing cybersecurity risks to systems, assets, data, and capabilities. This involves asset management, risk assessments, and identifying vulnerabilities and threats to prioritize security measures.

Implements appropriate safeguards to ensure the delivery of critical services and to prevent or minimize the impact of cybersecurity incidents. This includes access control, data security measures, staff training, and maintenance of protective technologies.

Enables timely discovery of cybersecurity events through continuous monitoring and detection processes. This function involves implementing tools and procedures to identify anomalous activities or potential security breaches quickly.

Outlines actions to take once a cybersecurity incident is detected to contain its impact. This includes incident response planning, communication strategies, analysis, and mitigation efforts to manage and resolve incidents effectively.

Focuses on restoring systems and services affected by a cybersecurity incident to normal operation. It involves recovery planning, implementing improvements based on lessons learned, and coordinating with external parties as needed to resume regular activities promptly.

Establishes clear leadership responsibilities and oversight for cybersecurity within the organization. This includes defining roles and responsibilities, implementing policies and procedures, and ensuring top-level management is actively involved in cybersecurity decision-making processes.

Focuses on identifying, assessing, and mitigating cybersecurity risks to critical assets and services. Organizations are required to implement appropriate technical and organizational measures to manage risks, including regular security assessments and the adoption of security standards.

Mandates timely reporting of cybersecurity incidents to relevant authorities. This ensures rapid response and coordination in the event of a cyber incident, minimizing impact and facilitating information sharing about threats and vulnerabilities across sectors.

Addresses the need for organizations to manage cybersecurity risks within their supply chains. This involves assessing third-party vendors, ensuring they meet security requirements, and incorporating security considerations into procurement and contract management processes.

Encourages collaboration between organizations, sectors, and member states to enhance overall cybersecurity posture. This includes sharing threat intelligence, best practices, and participating in joint exercises to prepare for and respond to cyber threats collectively.

Emphasizes the importance of cultivating a strong cybersecurity culture within the organization. This involves providing regular training and awareness programs for employees at all levels to recognize and respond appropriately to cybersecurity threats, thereby reducing human-related vulnerabilities.