Skip to content

description: As authorities may adopt TIBER-EU within their jurisdictions, they can have a key role in engaging with prospective TI/RT providers. As the market for threat intelligence and red teaming evolves, authorities and their respective TCTs can play a proactive role in identifying providers that meet the TIBER-EU requirements.

Possible roles of authorities

As authorities may adopt TIBER-EU within their jurisdictions, they can have a key role in engaging with prospective TI/RT providers. As the market for threat intelligence and red teaming evolves, authorities and their respective TCTs can play a proactive role in identifying providers that meet the TIBER-EU requirements.

In some jurisdictions, authorities and TCTs may play an active role in catalysing accreditation and certification capabilities. Among others, the authority and TCT may opt to undertake the accreditation and certification process themselves, or they may liaise with industry bodies in the jurisdiction that already undertake this task. In principle, an accreditation and certification provider would be expected to validate the baseline level of proficiency of the TI and RT providers and their staff to deliver TIBER-EU tests.

In cases where there are no accreditation and certification providers, the authorities and TCTs may work with entities and TI/RT providers to develop or enhance self- assessment templates, which can be used by TI/RT providers to demonstrate their capabilities to deliver TIBER-EU tests. Alternatively, authorities and TCTs may explore other tools to help ease the process of ensuring that entities can source the appropriately qualified TI/RT providers to deliver TIBER-EU tests.

Authorities and TCTs may act as a central point of contact for entities and TI/RT providers, connecting them to each other, to facilitate the procurement process.

Authorities and TCTs can make an assessment of the level of maturity of the TI and RT market within their respective jurisdiction, gather more experience with the issue of accreditation and certification and liaise with the TIBER-EU Knowledge Centre to assess whether the Guidelines should be updated.