Funded by the European Union, CIRCAT is a highly innovative project designed to enhance the cybersecurity posture and resilience of large industrial installations and critical infrastructure sectors (as outlined in the NIS2 directive).

Instead of simply reacting to cyber incidents, CIRCAT empowers organizations to proactively defend themselves using cutting-edge, AI-enhanced tools and continuous risk assessment.

How We Do It

• AI-Driven Threat Detection & Monitoring: We deploy continuous, near real-time monitoring systems that leverage AI to automatically identify, assess, and prioritize cyber risks and vulnerabilities, which optimizes resource allocation and drastically reduces response times.
• Advanced "Cyber Range" Training: By integrating real-world Cyber Threat Intelligence (CTI) feeds, we create a secure, controlled "Cyber Range" environment. This allows organizations to run realistic simulations of advanced threats across networks, cloud systems, Industrial Control Systems (ICS), and IoT.
• Rigorous Penetration Testing: We conduct customised, structured penetration testing to assess vulnerabilities under near real-world conditions, helping organizations identify weaknesses before attackers can exploit them.
• Cross-Border Collaboration: Because cyber threats don't respect borders, CIRCAT is establishing a scalable network to host joint cybersecurity exercises. This fosters collaboration, knowledge sharing, and coordinated incident responses among EU Member States.

Open Call Opportunities

The CIRCAT project will launch two distinct Open Calls to distribute Financial Support to Third Parties (FSTP) and strengthen cybersecurity resilience across European critical infrastructures.

Open Call 1: Penetration Testing Scenarios Development
• Objective: This call aims to select up to 18 third-party projects to design and document realistic penetration testing scenarios tailored to critical infrastructure sectors.
• Target Applicants: National cybersecurity authorities, national cybersecurity competence centres, operators of essential services, large industrial installations, and governmental entities.
• Funding and Duration: Selected entities will receive up to €40,000 in lump-sum funding to participate in a 6-month expert mentoring programme.
• Open Call Deadline:July 9, 2026 at 15:00

Open Call 2: Cyber Threat Support Services
• Objective: This second call will select up to 38 cybersecurity projects to execute vulnerability testing and threat assessments using the scenarios defined during the first call.
• Target Applicants: Digital service providers, specifically SMEs and start-ups, with a strong background in penetration testing and threat assessment.
• Funding and Duration: Selected SMEs will receive up to €60,000 in lump-sum funding to carry out the testing activities and provide mitigation recommendations over a 10-month support programme.
• Open Call 2 is scheduled for May 2027

CIRCAT is building a smarter, collaborative, and AI-powered shield to ensure that Europe's essential services and critical sectors remain secure, compliant, and resilient against the cyber threats of tomorrow!

---

Funded by the European Union. Views and opinions expressed are however those of the author(s) only and do not necessarily reflect those of the European Union or the European Cybersecurity Industrial, Technology and Research Competence Centre. Neither the European Union nor the granting authority can be held responsible for them. The project is supported by the European Cybersecurity Competence Center (ECCC) and its members.