Cyber Trust Europe – the European Quality Label for Cybersecurity
Cyber Trust Europe is the European Label for Cybersecurity. It is based on the Cyber Risk Rating Scheme which was developed by leading Industry Cyber Experts in cooperation with the NIS Authority. There are three quality levels and labels accordingly.
Show your fulfillment of cybersecurity standards and be ready for NIS 2.
Why Cyber Trust Europe?
The benefits for your organisation
Get an overview of your suppliers & service providers and ensure compliance with the NIS directive.
What is the purpose of the Cyber Trust Europe Label?
The Cyber Trust Europe Label gives organizations the possibility to externally demonstrate the fulfillment of essential baseline security requirements for cybersecurity and the importance of the topic within the organization. This is especially important for companies, which act as suppliers for Operators of essential Services (OeS) according to the NIS directive of the European Union. These OeS have to assure adequate technical and organizational security measures also within their suppliers. The criteria of the Cyber Trust Europe Label map to the NIS requirements and are acknowledged accordingly for NIS audits.
Increasingly companies and consumers take diligent care that their suppliers are secure and trustworthy. The Cyber Trust Europe Label is an easy and affordable possibility to externally demonstrate that security is an important topic in the company and essential security requirements have been implemented. In this respect, it is a cost-effective alternative to a costly ISO 27001 certification.
In the future, this will also apply to many other companies (so-called "operators of important services") with more than 50 employees, based on the Europe-wide NIS 2 directive. In general, with the new NIS 2 law, there will be minimum cyber security standards for all small and medium-sized enterprises (SMEs). With the Cyber Trust Label you meet this minimum standard and can also prove this accordingly.
More and more companies and consumers are making sure that their suppliers are safe and trustworthy. The Cyber Trust Europe Quality Label is a simple and inexpensive way of making it visible to the outside world that security is important to the organization and that essential security measures have been implemented. It is therefore a cost-effective alternative to a complex ISO 27001 certification in many areas.
Who is behind the Cyber Trust Europe Label?
The Cyber Trust Europe Label is based on the Cyber Risk Rating Scheme, which was developed by Kompetenzzentrum Sicheres Österreich (Austrian Security Board) in cooperation with KSV1870. The Kompetenzzentrum Sicheres Österreich is Austrias largest non-profit organisation focused on improving security. KSV1870 is Austrias largest Rating Agency, offering services in the areas of risk management and credit protection. The governance of the cyber risk rating schemes lies in the hands of the Cyber Risk Advisory Board, which consists of leading cybersecurity experts from large Operators of essential Services from all sectors according to the NIS directive.
How to get a Cyber Trust Europe Label?
Applying for a Cyber Trust Europe Label is easy. Everything can be done online. Click on the chart below to see details of the process. For the Silver label please click here and for the Gold label please click here.
- Online request
- Answering the online questionnaire
- Automated Web Scoring (of the submitted qualified domain)
- Validation of answers and calculation of preliminary Cyber Risk Rating
- Possibility to clarify or correct open issues
- Calculation of final Cyber Risk Rating
- Issuing of the label and recording in the Cyber Trust Label Database
How does Cyber Trust Europe help with regard to NIS 2?
The Cyber Trust Europe label is an important support instrument for achieving NIS 2 compliance. On the one hand it serves as proof of your own baseline security (and in the case of the silver or gold label even advanced security) and on the other hand it can be used as an essential element within the management of supplier risk (Third Party Risk Management) by demonstrating the required cybersecurity of your suppliers. For this purpose, it is also positively credited by the Austrian NIS authority, as marked in the corresponding NIS fact sheet 09/22 (only available in German) in the chapter "Dealing with service providers, suppliers and third parties".