KIA Veiligheid KIA Veiligheid

Action Agenda Cybersecurity

Digitalisation affects all sectors of society: from energy and healthcare to infrastructure, transport, manufacturing and communications. It is a driver of innovation, but it also increases the vulnerability of digital systems and chains. Cyberattacks are increasing in number, complexity and impact. The risks are not limited to financial damage, but also have consequences for our privacy and democracy. The question is not whether we want to digitise, but how we can do so in a structurally secure manner. The ambition is therefore: 'The Netherlands will be intrinsically digitally secure by 2035'. The Cybersecurity Action Agenda is based on the principle of cybersecurity by design: security as an integral part of the design, development and implementation of digital systems. Only in this way can digitisation be scaled up responsibly and the Netherlands become intrinsically digitally secure.

The Cybersecurity Action Agenda consists of three lines of action, which together ensure a structural strengthening of digital security and resilience. The first line of action focuses on the transition to cybersecurity-by-design: incorporating digital security into development and design from the outset, rather than implementing it retrospectively. This requires intensive stimulation of public-private cooperation, both regionally and sectorally, in order to jointly develop new technologies, working methods and standards.

The second line of action revolves around the development of new technologies and methodologies, by investing specifically in research and development of cybersecure-by-design and autonomous cybersecurity. This opens up new market opportunities for Dutch companies, with products and services that can be applied worldwide.

The third line of action focuses on the preconditions and infrastructure needed to make this transition possible. Strengthening human capital is essential in this regard. In addition, this line of action focuses on setting up test labs and support facilities to accelerate innovation and support implementation in practice.

Innovation Programmes

Within this Action Agenda, three Innovation Programmes have been developed that work together towards an intrinsically digitally secure Netherlands by 2035. The programmes focus on sectoral and regional transitions, technology & methodology, and preconditions and infrastructure. The content of each innovation programme is explained below.

Innovation Programme 1 | Sectoral and regional transitions

This programme aims to make sectors and regions intrinsically digitally secure and stimulate new economic activity.

  • Cybersecurity as a core element: not a cost item, but an integral part of business operations and a distinguishing feature of Dutch products and services

  • Shift in focus: from separate security solutions to intrinsically secure products

  • Sustainable ecosystems: collaboration between large companies, SMEs, knowledge institutions and government

  • Capacity for action: inspiring and strengthening parties to accelerate and embed the technological transition

As a result, Dutch sectors and value chains widely apply safe technology in their processes and products. The Netherlands is internationally recognised as a country where safe technology is actually used and where intrinsic safety is a distinguishing factor in quality, innovation and competitiveness.

Innovation Programme 2 | Technology & Methodology

The second Innovation Programme lays the technological and methodological foundations.

  • Secure products & services: technologies and methodologies for reliability and controlled chains

  • Secure-by-design: from design to certification with frameworks, verification and assessment tools

  • Acceleration: from reactive security to demonstrably secure products, chains and ecosystems

  • Strategic autonomy: the Netherlands develops knowledge and solutions that can be used worldwide

This should lead to a robust and internationally recognised foundation of technology and methodology for intrinsically secure digitisation, which can be widely applied across sectors and value chains.

Innovation Programme 3 | Preconditions and Infrastructure

This programme focuses on the preconditions and infrastructure needed to realise the transition, with the ambition of creating a playing field that supports the other Innovation Programmes and ranks among the best internationally. This is achieved by:

  • The development of talent programmes to build sufficient expertise and skills

  • Setting up test labs where innovative ideas can be tested and validated

  • Aligning and adapting regulations to stimulate and protect innovation

  • Making funding available for growth and development

  • Supporting start-ups and scale-ups

  • Alignment with European frameworks including NIS2, the Cyber Resilience Act, and the AI Act, and through international cooperation

This should lead to a robust knowledge and innovation infrastructure that enables technological development and the application of intrinsically secure digitisation. Talent, facilities and international connections are structurally organised and aligned with technological needs.