Greece’s national cybersecurity strategy 2020–2025

The National Cybersecurity Strategy 2020–2025 of the Hellenic Republic, issued by the Ministry of Digital Governance and developed under the coordination of the National Cybersecurity Authority (NCSA), sets forth a comprehensive and forward-looking roadmap to secure the country’s digital environment. This strategy is a response to the increasing complexity and frequency of cyber threats, the integration of advanced technologies such as artificial intelligence and 5G, and the expanding digital needs of citizens, businesses, and public institutions.

Its purpose is to create a unified and resilient national cybersecurity framework that protects critical infrastructures, fosters innovation, and strengthens both national and international partnerships. The strategy also aims to build trust in digital technologies, preserve citizens’ rights and privacy, and align Greece with European Union directives and global cybersecurity standards.

The strategy is built upon an in-depth analysis of the evolving threat landscape, which includes a range of malicious actors—from individual cybercriminals and activists to sophisticated state-sponsored operations. In addition, it accounts for the transformative impact of new technologies, the increased reliance on remote services during the COVID-19 pandemic, and the need to modernize institutional capacities and coordination mechanisms.

The strategy defines five strategic goals, each supported by specific objectives and operational activities. These goals span governance, infrastructure protection, incident management, investment and research, and capacity development. Through this multi-dimensional approach, Greece commits to ensuring the safety, continuity, and sovereignty of its digital ecosystem.

Goals of the strategy

• Develop a functional and coordinated cybersecurity governance system
• Protect critical infrastructures and secure the deployment of emerging technologies
• Strengthen mechanisms for incident response, cybercrime prevention, and privacy protection
• Foster a modern investment environment for cybersecurity, emphasising research and development
• Promote cybersecurity awareness, education, and training for all stakeholders

Focus areas

• National risk and contingency planning
• Enhancement of public-private partnerships
• Establishment of advanced incident response capabilities
• Protection of digital rights and personal data
• Integration of cybersecurity in digital governance by design
• Support for innovation, entrepreneurship, and technological development in cybersecurity
• Public education, awareness campaigns, and skills training programs

The implementation of the strategy is supported by a network of key stakeholders, including national authorities, military and police cybersecurity units, data protection bodies, regulatory commissions, and academic and research institutions. Their collaboration is essential to ensure effective policy execution, knowledge sharing, and continuous improvement through evaluation and feedback.