1. In order to contribute to the development of confidence and trust and to promote swift and effective operational cooperation among Member States, a network of national CSIRTs is established.<\/p>\n\n\n\n
2. The CSIRTs network shall be composed of representatives of the CSIRTs designated or established pursuant to Article 10 and the computer emergency response team for the Union\u2019s institutions, bodies and agencies (CERT-EU). The Commission shall participate in the CSIRTs network as an observer. ENISA shall provide the secretariat and shall actively provide assistance for the cooperation among the CSIRTs.<\/p>\n\n\n\n
3. The CSIRTs network shall have the following tasks:<\/p>\n\n\n\n
(a) to exchange information about the CSIRTs\u2019 capabilities;<\/p>\n\n\n\n
(b) to facilitate the sharing, transfer and exchange of technology and relevant measures, policies, tools, processes, best practices and frameworks among the CSIRTs;<\/p>\n\n\n\n
(c) to exchange relevant information about incidents, near misses, cyber threats, risks and vulnerabilities;<\/p>\n\n\n\n
(d) to exchange information with regard to cybersecurityCybersecurity<\/span> \u2018cybersecurity\u2019 means cybersecurity as defined in Article 2, point (1), of Regulation (EU) 2019\/881;\r\r- Definition according Article 6 Directive (EU) 2022\/2555 (NIS2 Directive)<\/a>\r\r'cybersecurity\u2019 means the activities necessary to protect network and information systems, the users of such systems,\rand other persons affected by cyber threats;\r\r- Definition according Article 2, point (1), of Regulation (EU) 2019\/881;<\/span><\/span><\/span> publications and recommendations;<\/p>\n\n\n\n (e) to ensure interoperability with regard to information-sharing specifications and protocols;<\/p>\n\n\n\n (f) at the request of a member of the CSIRTs network potentially affected by an incidentIncident<\/span> Means an event compromising the availability, authenticity, integrity or confidentiality of stored, transmitted or processed data or of the services offered by, or accessible via, network and information systems.\r\r- Definition according Article 6 Directive (EU) 2022\/2555 (NIS2 Directive)<\/a><\/span><\/span><\/span>, to exchange and discuss information in relation to that incident and associated cyber threats, risks and vulnerabilities;<\/p>\n\n\n\n (g) at the request of a member of the CSIRTs network, to discuss and, where possible, implement a coordinated response to an incident that has been identified within the jurisdiction of that Member State;<\/p>\n\n\n\n (h) to provide Member States with assistance in addressing cross-border incidents pursuant to this Directive;<\/p>\n\n\n\n (i) to cooperate, exchange best practices and provide assistance to the CSIRTs designated as coordinators pursuant to Article 12(1) with regard to the management of the coordinated disclosure of vulnerabilities which could have a significant impact on entities in more than one Member State;<\/p>\n\n\n\n (j) to discuss and identify further forms of operational cooperation, including in relation to:<\/p>\n\n\n\n (i) categories of cyber threats and incidents;<\/p>\n\n\n\n (ii) early warnings;<\/p>\n\n\n\n (iii) mutual assistance;<\/p>\n\n\n\n (iv) principles and arrangements for coordination in response to cross-border risks and incidents;<\/p>\n\n\n\n