Two projects funded under the Digital Europe programme currently offer the possibility to apply for cascade funding:

SECURE-CALL #1 - SECURE First Open Call For Proposals

To help micro, small and medium-sized enterprises (MSMEs) adapt to the requirements of the Cyber Resilience Act (CRA), SECURE provides targeted funding opportunities designed to support your journey toward cybersecurity compliance.

Support and benefits

• 50% co-financing for projects that enhance cyber resilience
• A simple, transparent application process via a dedicated online platform developed and maintained by SECURE
• Clear evaluation criteria and fair selection procedures
• Access to interactive guidance tools and a supportive community

Eligible applicants: single legal entities qualifying as micro, small or medium‑sized enterprises (mSMEs)

More information on the call website.

Deadline to submit applications: 29 March 2026.

CYSSDE Open Call 3: Penetration Testing and Vulnerability Assessment

Call Overview

The CYSSDE project invites entities with cybersecurity expertise to apply for Open Call 3. This initiative, funded by the European Union, aims to strengthen the cyber resilience of Member States by supporting the practical implementation of the NIS2 Directive and the Cyber Resilience Act (CRA).

The objective of this call is to select up to 12 projects that will conduct penetration tests and vulnerability assessments for critical sectors.

Scope and Objectives

Selected beneficiaries will enter an 18-month Support Programme to deliver high-quality security testing services. The primary requirement for each beneficiary is to perform at least 10 penetration tests for external end-users.

Support and Benefits

• Maximum Grant: Up to €200,000.00 per project (Lump Sum).
• Funding Rate: 50% co-funding (applicants must cover the remaining 50% through their own resources).
• Non-Financial Support: Access to the CYSSDE Mentoring Programme, including technical guidance, tool repositories, and networking with the European cybersecurity ecosystem.

Eligible Applicants: SMEs, mid-caps, large companies, research centres (including universities), and public bodies with cybersecurity expertise

Composition: Applications are accepted from individual entities or consortia (up to 2 entities, led by a cybersecurity specialist).

Geographical Eligibility: Applicants must be registered in and controlled by entities within an EU Member State or an EEA country.

More information on the call website.

Deadline to submit applications: 28 April 2026.