European consortium kicks off a three-year initiative to secure software supply chains, co-ordinated incident response, and lifecycle resilience under emerging EU cybersecurity frameworks. The project is coordinated by Wibu-Systems AG and co-funded by the European Union.
The European research and innovation project Enforces (Enhanced Cooperation for Cybersecurity) has officially started, bringing together a strong consortium of industrial manufacturers and cybersecurity technology providers, supported by applied research organizations to address one of Europe’s most pressing challenges: ensuring resilient, trustworthy software throughout the lifecycle of industrial automation systems.
The project’s official kickoff took place on 10–11 February 2026 at Wibu-Systems AG in Karlsruhe, Germany, where consortium partners met in person for the first time to align on the strategic roadmap for the coming three years. The meeting marked the operational starting point of Enforces and set the stage for close cross-border collaboration enabled by EU funding.
From incident detection to secure recovery: closing the cybersecurity loop
Enforces is designed to go beyond isolated security measures. Its central objective is to close the loop between cybersecurity incident detection, coordinated response, certification, and secure software redistribution in industrial environments. This is particularly relevant for automation and manufacturing, where software must often be updated across segmented, partially disconnected, or heterogeneous Operational Technology (OT) networks.
At the heart of the project is a Cybersecurity System Platform that links multiple trusted instances into a securely chained “system circle.” This includes:
• Private Security Operation Centers (SOCs) that collect, correlate, and classify incident and vulnerability data,
• Secure Elements that act as trust anchors at OT edges and gateways,
• Automated playbooks for vulnerability mitigation, certification, and secure software updates,
• and cross-border data exchange mechanisms that allow SOCs and stakeholders to cooperate while respecting data sovereignty.
The technical approach directly supports compliance with NIS2 and anticipates requirements of the Cyber Resilience Act, while remaining adaptable to future regulatory and technological developments.
“Enforces brings together technologies, processes, and stakeholders into an operational cybersecurity framework,” explained Alvaro Forero, Project Coordinator at Wibu-Systems AG. “As coordinator, our responsibility is to ensure that we are building a cooperative system where incident handling, trust anchors, and secure software deployment work together across organizational and national boundaries. The kickoff meeting confirmed a shared understanding that cybersecurity resilience must be engineered into the full lifecycle of industrial software.”
Clearly defined roles across a strong European consortium
Enforces brings together partners with complementary expertise across Europe. As project coordinator, Wibu-Systems contributes its long-standing expertise in software protection, licensing, and secure update mechanisms for industrial environments, while ensuring technical coherence and cross-partner integration across the project. Industrial companies such as Balluff (Germany and Hungary), Schneider Electric (France), Tttech Computertechnik (Austria), and Technology Nexus Secured Business Solutions (Sweden) contribute real-world requirements from automation, manufacturing, and industrial networking. Technology and cybersecurity specialists including Infineon Technologies (Germany), Langlauf Security Automation (Germany), Dynamiki (Greece), AITAD (Germany), and ResilTech (Italy) provide expertise ranging from AI and embedded systems to secure elements and cryptography to SOC operations and incident response. Applied research is supported by subcontractors such as Fraunhofer SIT, while VDMA contributes its industrial network and policy interface.
From a partner perspective, the project is also seen as a commitment to European cooperation. “At ResilTech, we look forward to contributing with full commitment and to working alongside such high-level partners to strengthen Europe’s industrial cybersecurity,” said Francesco Brancati, Security Solution Manager and R&D Program Manager at ResilTech Srl, underlining the importance of cross-border collaboration as a prerequisite for resilient industrial systems.
The project effectively integrates three essential layers of work, ranging from structural activities such as system requirements and architecture design, through practical implementation efforts including SOC integration, digital elements, and secure connectors, to quality-oriented tasks focused on dissemination, standards compliance monitoring and training. Early milestones include the definition of legal and technical requirements, the design of the Cybersec System architecture, and the setup of initial SOC and platform components, followed by demonstrators and validation in later phases.
Industrial partners see Enforces as a strategic investment in long-term resilience.
As Dr. Markus Jung, VP Engineering at Balluff GmbH emphasized during the project launch, “Enforces is a great opportunity for Balluff to build a strong network with leading partners in the cybersecurity domain. The project will support us in further strengthening our cybersecurity measures and enhancing best practices across our industrial automation products, processes, and manufacturing sites. The strong consortium enables us to anticipate emerging trends in the coming years, well beyond the requirements of the Cyber Resilience Act, and ultimately helps us empower our customers to increase their own cybersecurity.”
Over the next three years, Enforces will deliver technical demonstrators, best practices, training activities, and contributions to standardization and certification discussions. By combining industrial deployment experience with cybersecurity expertise, the project aims to create results that are replicable across sectors and that strengthen Europe’s digital sovereignty in industrial software and automation.
Co-funded by the European Union, under the Grant Agreement No. 101249745, the project is supported by the European Cybersecurity Competence Centre.
Views and opinions expressed are those of the author(s) only and do not necessarily reflect those of the European Union or the European Cybersecurity Competence Centre. Neither the European Union nor the European Cybersecurity Competence Centre can be held responsible for them.
Image: Consortium partners at the Enforces project kickoff meeting, February 2026.
Source: Wibu-Systems
