Cybersecurity/Network and Information security

Government/Public Services

Impact on SMEs (4th Open Call)

Ensuring that protocols are rigorously verified according to standardised methodologies could, at least partly, lower the financial barriers for SMEs to enter the certification market, as the consistent and reliable verification of protocols would streamline the certification of more complex systems.

Impact on SMEs (5th Open Call)

By implementing rigorous, standardized verification methods, the overall efficiency of the certification process would improve. This would, to some extent, lower financial entry barriers for SMEs in the certification market, as consistent and dependable protocol verification would simplify the certification of more intricate systems.

Impact on SMEs (6th Open Call)

A unified approach to the verification of cryptographic protocols within cybersecurity certification schemes could significantly reduce the costs and workload associated with certifying composite products or services. By ensuring that protocols are rigorously verified using standardized methodologies, the overall efficiency of the certification process would improve. This could, at least in part, lower the financial barriers for SMEs to enter the certification market, as consistent and reliable verification of protocols would streamline the certification of more complex systems.

Impact on SMEs (7th Open Call)

Impact on society (4th Open Call)

My work is centred on creating robust frameworks for verifying cryptographic protocols within ICT products, services, and processes, ultimately strengthening resilience against cyber threats.

Impact on society (5th Open Call)

In the broader European context, my fellowship is poised to have a significant impact on cybersecurity practices, aligning with the objectives set forth by the Cybersecurity Act (CSA) and advancing European interests in bolstering digital security.

Impact on society (6th Open Call)

My primary focus is on developing standardized verification methodologies for cryptographic protocols, which play a key role in enhancing cybersecurity practices across Europe. I am working on creating robust frameworks for verifying these protocols within ICT products, services, and processes, ultimately contributing to greater resilience against cyber threats.
The Cybersecurity Act (CSA) promotes the use of certification as an effective cybersecurity tool that can be applied consistently across Member States without creating unnecessary administrative burdens. Previously, products or services certified in one country often had to undergo similar procedures again when different national requirements were in place.
With the introduction of the European Cybersecurity Certification (EUCC) scheme, however, certificates issued under this framework will be legally recognized across all Member States once the corresponding Implementing Act is in force. This harmonization is essential for reducing duplicated efforts, saving time and resources, and ensuring consistent cybersecurity standards throughout Europe.

Impact on society (7th Open Call)

Open Call

Organisation type

Organization

Cryptography specialist, National Institute of Telecommunications

Organization website

Cryptography specialist, National Institute of Telecommunications

Portrait Picture

Proposal Title (4th Open Call)

Developing ISO/IEC 29128 parts 2 and 3

Proposal Title (5th Open Call)

Progressing ISO/IEC 29128 parts 2 and 3

Proposal Title (6th Open Call)

Advancing ISO/IEC 29128 parts 2 and 3

Proposal Title (7th Open Call)

Advancing ISO/IEC 29128 parts 2 and 3

ISO/IEC JTC 1/SC 27 Information security, cybersecurity and privacy protection

Standards Development Organisation

StandICT.eu Year

2026

2029

Year

2025

2026

Topic (4th Open Call)

Topic (5th Open Call)

Topic (7th Open Call)

Johann Groszschaedl

Description of Activities

Improving security is one of the most, if not the most, important priorities for the evolution and future development of the IoT.

Fellow's country

Luxembourg

Open Call Topics

Impact on SMEs (2nd Open Call)

MSP430 microcontrollers are deployed in thousands of IoT devices of European companies in all segments of the Embedded/IoT industry, ranging from automotive appliances over industrial control systems to medical devices. Many of the companies that designed and/or manufactured these devices are SMEs.

Impact on society (2nd Open Call)

This project has contributed to improve the security of the IoT since cryptographically strong E2E protocols are the foundation upon which secure architectures, systems and protocols can be built.

Linkedin Profile

Open Call

OC#2 2026

Organisation type

Academia/Research

Organization

University of Luxembourg

Organization website

University of Luxembourg

Portrait Picture

Proposal Title (2nd Open Call)

IoTDisco: Strong yet Lightweight End-to-End Security for the Internet of Constrained Things

Standards Development Organisation

IETF

StandICT.eu Year

2026

Year

Topic (2nd Open Call)

François Lorek

Description of Activities

This fellowship allows me to take part to all meetings concerning Cybersecurity, Privacy and Artificial Intelligence (even most are very early or very late in the day, as per rules for scheduling in SDO's), whilst being able to keep delivering standard based consulting especially for SMEs which need to comply for ISO 27001 certifications mostly.

Fellow's country

France

Open Call Topics

Impact on SMEs (2nd Open Call)

Provide confidence to SMEs about concerned about Cybersecurity & Privacy standards within Artificial Intelligence.

Impact on SMEs (4th Open Call)

Many small and mediums companies are about to be impacted by Cybersecurity & Privacy, IoT & DT or Artificial Intelligence standards or are concerned by Cybersecurity & Privacy within Artificial Intelligence with a need to make their market and potential customers confident, especially in the context of forthcoming standards related to regulations at european level.

Impact on society (2nd Open Call)

The work being carried out under the guidance of the officers of which I am a member is helping to reassure businesses and civil society alike as to how confidence can be guaranteed, and how drifts can be avoided by providing maximum protection against today’s emerging threats associated with the acceleration of artificial intelligence-based technologies.

Impact on society (4th Open Call)

Among others ISO officer duties and ISO/CEN/CENELEC standardisation expert I expect to provide the following benefits: clarity of roadmap and scopes, encourage constructive collaboration and participation of SC41 & SC42 experts in SC27 AhG2 & 3, maintain a smooth and efficient organisation of working sessions,

Linkedin Profile

Open Call

OC#2 2026

OC#4 2026

Organisation type

ISO/IEC JTC 1/SC 27 Information security, cybersecurity and privacy protection

Organization

TRAX

Organization website

TRAX

Portrait Picture

Proposal Title (2nd Open Call)

Developing cybersecurity standardisation for Artificial Intelligence and Internet of Things

Proposal Title (4th Open Call)

Developing cybersecurity standardisation for Artificial Intelligence and Internet of Things

Role in SDO

convenor

Standards Development Organisation

StandICT.eu Year

2026

Year

Topic (2nd Open Call)

Topic (4th Open Call)

Sandra Feliciano

Description of Activities

My fellowship focuses on several priorities and key gaps related to AI and cybersecurity standards applied in education.

Fellow's country

Portugal

Open Call Topics

ESTG - Politécnico do Porto

Impact on SMEs (5th Open Call)

It impacts educational organisations in any country and of all legal forms and sizes (including SME) and also includes training departments of SMEs from other economic sectors.

Impact on SMEs (8th Open Call)

This contribution helps ensure that cybersecurity and AI standards are usable and relevant for SMEs and Micro-SMEs, which often lack the capacity to influence or implement complex requirements. By representing their needs in ETSI TC SAI, I promote practical, inclusive solutions that reflect operational realities.

Impact on society (5th Open Call)

Moreover, by tailoring ISO 42001 and ISO 27001 to the education sector, the project directly strengthens the cybersecurity posture of educational institutions across Europe. This includes safeguarding sensitive student data and protecting educational infrastructures from cyber threats. Also, the development of specific guidelines ensures a harmonized approach to cybersecurity across European educational systems, fostering a more secure and resilient digital education environment.

Impact on society (8th Open Call)

The work also impacts European society by aligning standards with EU values such as transparency, accountability, and digital dignity. It supports safer, more trustworthy AI systems while reinforcing policy objectives in the AI Act and Cyber Resilience Act. This enables broader adoption and public trust.

Linkedin Profile

Open Call

Organisation type

Organization

Invited Adjunct Professor, AESTAS INSIGNIS - Investigação e Suportes de Apoio à Gestão, Unipessoal, Lda.

Organization website

Portrait Picture

Proposal Title (3rd Open Call)

AI & Cybersecurity Standards in Education: A Collaborative approach for Safer Learning Environments

Proposal Title (5th Open Call)

AI & Cybersecurity Standards in Education II (Project Continuation)

Blockchain for a Sustainable Future: Dual-Impact Standards for ESG and SDGs

Proposal Title (8th Open Call)

Taking the Micro-SME Voice into Securing Artificial Intelligence (SAI) Standardization Activities

ISO/TC 232 Education and learning services

ISO/IEC JTC 1/SC 42 Artificial intelligence

Standards Development Organisation

ISO

StandICT.eu Year

2026

Year

Topic (3rd Open Call)

Topic (5th Open Call)

Angie Qarry Jaegermann

Description of Activities

This technical report, resulting from my fellowship’s contributions, is an equitable analysis of the relationship between Quantum Key Distribution (QKD) and Post-quantum Cryptography (PQC) technologies. It describes the two technologies' complementary nature and highlights their potential advantages and benefits.

Fellow's country

Austria

Open Call Topics

Impact on SMEs (7th Open Call)

The development of this TR is significant to the European market, mainly because Europe is pushing very hard for the development of QKD while NIST favors PQC. NIST has marked QKD as a technology not to be adopted for cybersecurity, and some of these decisions might contradict the European Cybersecurity roadmap.
The European Commission also invests heavily in developing a QKD European Network and hybrid QKD-PQC protocol implementations, and the European Space Agency is involved in many free-space QKD communication projects.
The development of this standard is significant to the European market, mainly because Europe is pushing very hard for the development of QKD while NIST favors PQC.

Impact on society (7th Open Call)

My fellowship supports the creation of CEN/CENELEC/JTC22 WG4 working Items (WI) aiming to develop a Technical Report for QKD related technologies.
CEN/CLC/JTC 22/WG4/WI JT022002 (QKD and PQC - An equitable analysis) was accepted. Due to increased activity in the European Networks to implement hybrid cybersecurity protocols of QKD-PQC, the European Commission requested that the hybrid solutions should also be included in the existing WI JT022002, which currently analyses QKD and PQC separately. Therefore, the proposed activity in this application is an extension of the current WI Technical Report to cover the hybridization protocols.

Linkedin Profile

Open Call

OC#3 2026

OC#7 2026

Organisation type

Organization

Founder & CEO/CTO, QDeepTech

Organization website

QDeepTech

Portrait Picture

Proposal Title (3rd Open Call)

Quantum Key Distribution (QKD) and Post Quantum Cryptography ( PQC) : An equitable analysis

Proposal Title (7th Open Call)

Cybersecurity of Hybrid PQC and QKD solutions

Standards Development Organisation

StandICT.eu Year

2026

Year

2025

Topic (3rd Open Call)

Topic (7th Open Call)

Samia Oukemeni

Description of Activities

By integrating ZTA, the project allows for more secure, scalable, and flexible access control mechanisms, which are crucial for the protection of sensitive data and systems against evolving cyber threats.

Fellow's country

Germany

Open Call Topics

Impact on SMEs (5th Open Call)

This fellowship project significantly impacts European SMEs and societies by enhancing cybersecurity in critical infrastructures through the standardisation of ACaaS. By integrating ZTA, the project allows for more secure, scalable, and flexible access control mechanisms, which are crucial for the protection of sensitive data and systems against evolving cyber threats. This approach reduces potential data breaches and security incidents, promoting a safer digital environment.

Impact on society (5th Open Call)

My project aligns with the EU's ICT Rolling Plan, emphasising the enhancement of cybersecurity and the development of a resilient, secure digital infrastructure. By focusing on advanced AC techniques rooted in ZTA, the project supports the EU's commitment to integrating ZTA principles into critical infrastructure.

Linkedin Profile

Open Call

OC#3 2026

OC#5 2026

Organisation type

Large Enterprise

Organization

Standarisation Expert, Vodafone

Organization website

Vodafone

Portrait Picture

Proposal Title (3rd Open Call)

Adaptive Context-Based Access Management for Critical Infrastructure

Proposal Title (5th Open Call)

Enhancing and Evolving Adaptive Context-Based Access Management for Critical Infrastructure

Standards Development Organisation

IEEE

StandICT.eu Year

2026

Year

Topic (3rd Open Call)

Topic (5th Open Call)

Elzbieta Andrukiewicz

Description of Activities

"Once the revision is done, we will disseminate it across the different stakeholders, and it will allow the community to learn the newest editions of widely recognised international standards that support the cybersecurity certification and technical aspects of the process of revision"

Fellow's country

Poland

Open Call Topics

Impact on SMEs (4th Open Call)

A unified approach to developing cybersecurity certification schemes and the possibility of reusing evaluation results produced under different certification schemes would be a dominant factor in decreasing the costs and workload needed for the certification of composite products or services. This could, at least partly, remove financial barriers for SMSs to enter the certification market.

Impact on society (4th Open Call)

The societal impact measured by increasing confidence in the certification as a powerful cybersecurity tool would be real.

Impact on society (6th Open Call)

The resulting study in the form of PWI 25543 is aimed at keeping the reference standards as the-state-of_the_art documents which cope with emerging and future technologies in cybersecurity certification.
The goal set up in the plan is strongly supported by sound standards with appropriate scope of application. In this way the assessments can be repeatable and comparable thus create the basis for wide recognition of results which usually appear as certificates respected by all EU Member States.

Impact on society (9th Open Call)

Gaining the customer confidence they are using secure and safe ICT products is the objective of security assessment. Considering technical complexity of cybersecurity evaluation these processes should rely on robust and mature standards. The customers and risk owners do not need to know all details of such evaluation, but they should have solid ground of trust in the results of evaluations usually expressed by the certificates.
Common Criteria provide highly sophisticated tools for gaining confidence in correct and sufficient implementations of security controls under the principles of the “cybersecurity-by-design-and-default” in the ICT products and the ground of their resilience in case of cyberattacks which could happen in the future.

Linkedin Profile

Open Call

Organisation type

National Institute of Telecommunications

Organization

Project Leader, National Institute of Telecommunications

Organization website

Portrait Picture

Proposal Title (3rd Open Call)

Revision of ISO/IEC 15408-1:2022

Proposal Title (4th Open Call)

Upgrading prEN 18037 to final stage

Proposal Title (6th Open Call)

revision of ISO/IEC 15408:2022 (all parts) and ISO/IEC 18045:2022

Proposal Title (9th Open Call)

Improving presentation and quality of Terminology for EN-ISO/IEC 15408 series and EN-ISO/IEC 18045

CEN/CLC/JTC 13 - Cybersecurity and Data Protection

ISO/IEC JTC1/SC27 WG3 "Security evaluation, testing and specification"

Standards Development Organisation

StandICT.eu Year

2026

2029

Year

Topic (3rd Open Call)

Topic (4th Open Call)

Topic (6th Open Call)

Topic (9th Open Call)

Pavel Cuchriajev

Description of Activities

My fellowship significantly contributes to the ICT standards landscape by advancing the Biometric System-on-Card (BSoC) standards, particularly within the ISO/IEC 17839 series.

Fellow's country

Lithuania

Open Call Topics

Impact on SMEs (4th Open Call)

My contribution impacts European SMEs by providing clear guidelines for implementing Biometric System-on-Card (BSoC) technology. Standards promote interoperability, reduce costs, enhance trust, and foster innovation, enabling SMEs to compete effectively, access markets, and build credibility.

Impact on SMEs (7th Open Call)

Impact on society (4th Open Call)

The work supported societal impacts by enhancing security and privacy, facilitating access to services, supporting digital transformation, promoting innovation and economic growth, and protecting individual rights in the digital age.

Impact on society (7th Open Call)

Linkedin Profile

Open Call

Organisation type

ISO/IEC JTC 1/SC 17 Cards and security devices for personal identification

Organization

Technical expert contributor; Standard Norge

Organization website

Standard Norge

Portrait Picture

Proposal Title (2nd Open Call)

Advance Biometric System-On-Card (ISO/IEC 17839) Standard improvement

Proposal Title (4th Open Call)

Advance Biometric System-On-Card (ISO/IEC 17839) Standard improvement

Proposal Title (5th Open Call)

Advance Biometric System-On-Card (ISO/IEC 17839) Standard improvement

Proposal Title (7th Open Call)

Advance Biometric System-On-Card (ISO/IEC 17839) Standard improvement

Standards Development Organisation

StandICT.eu Year

2026

Year

2025

Topic (2nd Open Call)

Topic (4th Open Call)

Topic (5th Open Call)

Topic (7th Open Call)

Erik Andersen

Description of Activities

The number of devices in these areas vastly outnumbers the number of human beings and this area is almost unprotected, which could have detrimental effects on our society. It is the hope that the project could be one way to enable a broader cybersecurity protection.

Fellow's country

Denmark

Open Call Topics

TC 57 Power systems management and associated information exchange

Impact on SMEs (4th Open Call)

The involved standards are useful so that Europe is involved in this type of cybersecurity, which may affect future EU directives.

Impact on SMEs (8th Open Call)

The extended ITU-T X.510 | ISO/IEC 9594-11 is expected to be an important specification for cryptographic algorithm migration which is essential in the light of future developments of quantum computers. The cryptographic pluck-in capabilities are also important as they will
ease migration, and they will allow different areas of the world to have their own choice of cryptographic algorithms.Moreover, this standard provideslean protocols with a minimum of overhead providing cybersecurity to other protocols (security by simplifications). This in particular important for constrained devices, like IoT devices.

Impact on society (4th Open Call)

Every aspect of cybersecurity has a high priority. Access control needs to be timely in place to prevent unauthorised access.

Impact on society (6th Open Call)

This updated standard will allow users (relying parties) to access certificate information for the whole of Europe and be a significant contributor to the single market. The two priorities selected are cybersecurity and interoperability.
The whole scope of DPKI and the proposed access secure protocols are primarily related to cybersecurity. The proposed access protocol will use robust and trusted cryptographic algorithms to protect the protocols. It is prepared for migration to quantum resistant cryptographic algorithms (crypto agility).
In parallel, any communication protocol is designed for interoperability and the two proposed protocols are no exception. Interoperability is a necessity.

Linkedin Profile

Open Call

Organisation type

Organization

Independent Expert, Andersen's L-Service

Portrait Picture

Proposal Title (1st Open Call)

Second edition of Rec. ITU-T X.510 | ISO/IEC 9594-11

Proposal Title (2nd Open Call)

Key Management and Public-key infrastructure: Establishment and maintenance

Proposal Title (4th Open Call)

Role-based access control for electric power systems

IEC 62351-90-4, Migration of cryptographic algorithms

Proposal Title (6th Open Call)

Revision of ITU-T X.510 | ISO/IEC 9594-11

Proposal Title (8th Open Call)

Third edition of Rec. ITU-T X.510 | ISO/IEC 9594-11, Protocol specifications for secure operations

Role in SDO

moderator

Standards Development Organisation

ITU

StandICT.eu Year

2026

Year

2023

Topic (1st Open Call)

Topic (2nd Open Call)

Topic (4th Open Call)

Topic (6th Open Call)

Topic (8th Open Call)

Thierry Maxime

Description of Activities

Work on ICT readiness is essential for organisations facing increasing risks and threats in an unstable environment when they rely more and more on ICT, supplying them guidance to gain more resilience to infrastructures and organisations.

Fellow's country

France

Open Call Topics

Linkedin Profile

Open Call

OC#2 2026

Organisation type

Organization

Information Security Consultant, TRAX

Organization website

TRAX

Portrait Picture

Proposal Title (2nd Open Call)

Managing last steps ISO/IEC 27031 revision, European experts and liaisons inputs within the project

Standards Development Organisation

StandICT.eu Year

2026

Year

Topic (2nd Open Call)

Karim Tobich

Description of Activities

This fellowship is meant to increase confidence in cybersecurity through the convergence of international SDOs and the alignment behind a common international standard which relates both to the market and society.

Country

United Kingdom of Great Britain and Northern Ireland (the)

Fellow's country

United Kingdom

Open Call Topics

Cloud and Edge Computing

Impact on SMEs (5th Open Call)

Organisations willing to achieve a resilient cybersecurity system will have to implement an information security management system. The standards developed through this contribution will provide SME and European societies with a comprehensive guidance on how to use ISO/IEC 27001 and ISO/IEC 27002. Moreover, ISO/IEC 27017 will provide SMEs working as Could service providers with a comprehensive list of guidelines to implement when providing services to Could service customers.

Impact on SMEs (7th Open Call)

Organisations willing to achieve a resilient cybersecurity system will have to implement an information security management system. Within that context, this contribution helps organisations of any size including SMEs to achieve better security and cybersecurity through the use of standards like ISO/IEC 27003, ISO/IEC 27028, and ISO/IEC 27004 that will be revised and developed through this work. In addition, this contribution provides technology organisations with a framework to develop and use secure cloud systems ISO/IEC 27017, edge computing systems ISO/IEC 25545 and raise awareness about security and privacy aspects of digital twin systems ISO/IEC 27568 so those concerns can be integrated at an early stage and achieve security and privacy by design when developing such innovative technology.

Impact on SMEs (8th Open Call)

Semiconductor and chip technologies are usually defined and created by large organizations. Nevertheless, European SMEs can be also impacted as those are usually the incubators for new technologies before expanding or getting bought by large organizations.

Impact on society (5th Open Call)

Developing and providing such standards to organisations allow them to implement the EU values and policies in an easy manner.

Impact on society (8th Open Call)

The fellowship enables meeting the European strategy on Chips act and bolster Europe’s competitiveness and resilience in semiconductor technologies and applications, and help achieve both the digital and green transition. In addition it allows for increased convergence of standardisation makers’ efforts achieving EU policy goals by providing a common standard when it comes to EU and international SDO and reducing time for adoption. Developing and providing such standards to organisations allow them to implement the EU values and policies in an easy manner

Linkedin Profile

Open Call

Organisation type

Online references related to the fellowship work

Organization

Director - Cybersecurity & Technology Consultancy

Organization website

CST Consulting

Portrait Picture

Proposal Title (1st Open Call)

Standards for Information security and cloud service providers

Proposal Title (5th Open Call)

Standards for Information security management, cloud service providers, and digital twins

Proposal Title (7th Open Call)

Standards for Information security management, cloud, edge and digital twin technologies

Proposal Title (8th Open Call)

Semiconductor and trusted chips landscape and gap analysis

Role in SDO

moderator

Standards Development Organisation

Topic

Cybersecurity / Cloud Computing

StandICT.eu Year

2026

Year

Topic (1st Open Call)

Cloud and Edge Computing

Topic (5th Open Call)

Topic (7th Open Call)

Julien Bringer

Description of Activities

I estimate that digital identities, and the way to ensure appropriate levels of assurance and handling of corresponding credentials, are key for the digital society.

Country

France

Fellow's country

France

Open Call Topics

E-Privacy

Impact on SMEs (9th Open Call)

Blockchain and Distributed Ledger technologies are developed directly in a global environment and thus the activity impacts EU and SMEs in EU, as for the way EU specificities and regulations (e.g. GDPR, eIDAS, NIS, MiCA) considered as early as possible. Also many SMEs in EU are positioned around security of web 3.0 applications and on decentralized identity and future standards on this matter would be key for procurement.

Impact on society (5th Open Call)

Toward the development of EU-friendly solutions for biometrics-based services, employing strong privacy enhancing technologies, thus going further contractual/organisational requirements, to ensure privacy and security by design. Promoting the use of the newest privacy enhancing technologies is in particular very important (biometric technologies are more and more seen as a way to fight against authentication/identification threats in our digital lives) as sharing or leaking biometric information without appropriate protection can be very critical.

Linkedin Profile

Open Call

Organisation type