CYRENE Open Call

CYRENE invites Small and Medium Enterprise (SMEs), start-ups, Cybersecurity vendors, and solution providers, as well as companies coming from different vertical industries including Healthcare, FinTech, Manufacturing, Agrifood, E-Government, Retail, Construction, Logistics, and Education, to apply for a novel solution addressing the critical issues of the modern Supply Chains domain.

 

The application process was completed on time on December 16, 2022!

What is the CYRENE Motivation?

Global Supply Chain Services (SCSs) underlie the operations of modern businesses, where diverse stakeholders collaborate through complex processes to supply goods to customers. Information and Communication Infrastructures typically support the operation and interactions of the supply chain stakeholders. The Critical ICT Infrastructures are subject to threats as the underlying assets on which their operation depends have vulnerabilities that can be exploited either through malicious attackers of unintentionally.

Although cybersecurity tools and products for handling threats have greatly evolved, there is still no easy, structured, standardized and trusted way to forecast, prevent and manage interrelated and propagated cybersecurity vulnerabilities and threats. Thus, there is a pressing need for devising methodologies, techniques and tools for the efficient evaluation and handling of security threats and vulnerabilities in Supply Chain environments.

What is the CYRENE Project?

CYRENE is a European project, funded under the Horizon 2020 Work Programme under contract number 952690. It focuses on the development of novel solutions for enhancing control, handling security threats and vulnerabilities and ensuring accountability of ICT systems, components, and services across the supply chains. These issues are addressed via a dual-use methodology, the Risk and Conformity Assessment (RCA) Methodology, and a set of tools that support this methodology. These tools assess the security and the resilience of Supply Chain Services (SCSs), the interconnected ICT infrastructures supporting these services and the assets that support the operations of the Supply Chains.

Who are we looking for?

SMEs, start-ups with legal/tax entity establishment, large enterprises, Cybersecurity vendors or software houses or solution providers, as well as Companies coming from different vertical industries including Healthcare, FinTech, Manufacturing, Agrifood, E-Government, Retail, Construction, Logistics, Education, and more.

To do what?

To enrich the CYRENE platform and application portfolio with new cybersecurity services and/or evaluate CYRENE services in various industries. The proposed activities are split into two research/evaluation directions:

Cybersecurity Service / Product / Application Providers

will provide off-the-shelf solutions with novel services based on Open-Source libraries, which will enrich the current CYRENE’s portfolio . The eligible services are as follows:

  • Data interoperability services to exchange threats, vulnerabilities, and incidents data with open threat sharing repositories including compliant with OpenCTI , STIX , MISP, and more. To build the schema for this solution, the awarded applicant will need to adhere as closely as feasible to the official STIX v2.1 specification . The final schema will need to, at least, incorporate the following STIX objects:
    • STIX Domain Object (SDO)
    • STIX Cyber-observable Object (SCO)
    • STIX Meta Objects (SMO)
  • A data enrichment service, which creates the interconnection graph by exploiting data made available by the CYRENE project related with vulnerabilities and threats. NVD and CAPEC data sources are already connected via CVEs, CWEs and attack patterns. Based on the above-mentioned connections along with the descriptions of vulnerabilities, weaknesses and threats, applicants are requested to implement an expert system (by using graph database / algorithms and/or NLP) to discover: a) new dependencies between the vulnerabilities, weaknesses and threats; and b) vulnerabilities / threats communities with similar characteristics that could increase attackers’ exploitability capabilities. The CYRENE available dataset is accessible via: CYRENE Dataset link
  • Penetration testing
  • Endpoint Detection and Response (EDR)
  • Security Operation Centre (SOC)
  • Security Information and Event Management (SIEM) as a Service
  • Data loss prevention software and encryption tools
  • Vulnerability and patch management tool
  • Digital forensics
  • Multi-layer ransomware protection
  • Predictive threat intelligence
  • Multi-level log correlation and analysis
  • Dynamic application security testing (DAST)

Vertical Industries Use Case Providers

will model and relate their digital or supply chain applications, services, assets and operations with the CYRENE Platform and test its ability to meet their cybersecurity and data protection needs. The eligible use case providers are requested to:

  • Define Critical Digital Assets of their organisation, model the assets into business processes and link them into interconnected services
  • Define Attack Paths, perform Risk Assessment and execute Simulation scenarios for possible attack paths
  • Demonstrate their modeling, definitions, risk, and simulation reports to the CYRENE Consortium
  • Prepare reports compiled for user experience, user journey, and user feedback for the CYRENE platform

What is the budget?

The CYRENE budget for this Open Call will be distributed to the two available types of activities, as follows:

  • Each Cybersecurity Applicant will be funded with up to €35.000 Brutto.
  • Each Use Case Applicant will be funded with up to €8.000 Brutto.

Watch the CYRENE Open Call Webinar

Key dates for the Open Call

  • 14 OCT 2022

    Open Call launch

  • 16 DEC 2022 17:00 CET

    Open Call deadline

  • 09 JAN 2023

    Results announcement

  • February 2023 – July 2023

    Services duration

The application process was completed on time on December 16, 2023

How to apply?

We strongly recommend you carefully read CYRENE Guidelines for Applicants below before starting to fill in the online Application Form.

Guidelines

Before applying, read the CYRENE Guidelines for Applicants 

Download

Proposal template

Click the button below to download the proposal template

Download

The application process was completed on time on December 16, 2023

KEY FACTS

Project Coordinator: Sofoklis Efremidis
Institution: Maggioli SPA
Email: info{at}cyrene.eu
Start: 1-10-2020
Duration: 36 months
Participating organisations: 14
Number of countries: 10

TWEETS by

FUNDING

EU flagThis project has received funding from the European Union’s Horizon 2020 Research and Innovation program under grant agreement No 952690. The website reflects only the view of the author(s) and the Commission is not responsible for any use that may be made of the information it contains.