El National Cryptological Center (CCN), an agency dependent on the National Intelligence Center (CNI), has strengthened ties with Microsoft Spain by signing a strategic agreement on cybersecurity Aimed at the public sector. Faced with the rise of digitalization and the increase in threats, both entities seek to strengthen the security, resilience, and reliability of the systems that support citizen services and information.
The new collaboration framework unites public and private efforts in the design of joint actions that include the development of training programs, the creation of technical guides, and the improvement of current technological protection standards. This is a key moment in which Administration requires robust solutions to safeguard digital sovereignty and respond to increasingly sophisticated cyber threats.
Among the most notable objectives of the agreement is the specialized training of technical personnel of the administrations. The plan includes activities tailored to current needs related to cybersecurity, cloud technologies, and regulatory adaptation, strengthening the professionalization of those in charge of public digital security.
Cybersecurity, training, and secure cloud adoption
The agreement places special emphasis on the continuous training and awareness of the technical staff of public entities. Training plans will be designed in the areas of cyber defense, cloud security, and compliance with the National Security Scheme (ENS). Furthermore, more than 170 Microsoft cloud and AI services They already have this certification, which facilitates their integration into institutional environments.
Another line of action focuses on the joint development of reference materials and technical guides in the safe use of cloud technologies, based on the shared security model, Microsoft's international experience, and Spanish regulations. These guides seek to facilitate the digital transition of the administrations, guaranteeing the integrity and privacy of the data managed.
The collaboration also includes technological proofs of concept and the development of customized roadmaps for the adoption of digital solutions, tailored to the maturity level of each organization.
Strengthening the STIC Product and Services Catalog
The STIC Products and Services Catalog (CPSTIC) is another key piece in this agreement: The official list of secure technological solutions will be improved and maintained validated for use in public administrations. This catalog helps organizations select reliable tools, optimizing resources and minimizing risks.
The collaboration with Microsoft also involves the realization of technical evaluations, ongoing adaptation to Spanish and European regulatory frameworks, and support for the technological transition of institutions that need to adopt cloud services and smart solutions, always aligned with current regulations.
Boosting the National Network of Cybersecurity Operations Centers (SOC) and incident response
The agreement has a direct impact on the National Network of Cybersecurity Operations Centers (SOC), responsible for monitoring and responding to incidents in the Spanish public sector. Thanks to this collaboration, will intensify surveillance, early warning and response capacity, optimizing resources and strengthening protection against complex attacks.
The CCN will continue to serve as the national coordination center for cyber incident management, strengthening its capabilities through access to advanced tools, knowledge sharing, and ongoing protocol updates in a rapidly evolving context of digital threats.
This reinforcement in the SOC Network will contribute to reduce exposure to mass attacks and minimize impact on essential services, providing greater security to citizens and institutions.
Artificial intelligence and Microsoft's European Security Program
One of the strategic axes is the incorporation of the artificial intelligence (AI) in the cyber defenseThe agreement is part of the Microsoft European Security Program, which enhances the use of AI as a barrier against advanced cyberattacks and encourages the sharing of threat intelligence between technology organizations and companies.
The use of AI will allow detect, analyze, and contain attacks more quickly and effectively, and will also help anticipate new types of threats. The collaboration will also facilitate access to secure infrastructures that comply with European regulations to protect technological sovereignty and public data.
This agreement represents a step forward in strengthening institutional cybersecurity in Spain, promoting advanced technical capabilities, updated resources, and a culture of digital protection in the public sector. Initiatives like this seek to ensure that the administration is prepared to face current and future challenges, protecting citizens' trust in public digital services.
