Este portal utiliza "cookies". Se quiser saber mais sobre cookies, quais as suas finalidades e como geri‑los, consulte a nossa Política de privacidade
Saltar para o conteúdo principal da página
digital.gov.pt Homepage
Menu

Strategies

Update 30.12.2025

Learn about all the current digital strategies, as well as their respective action plans.

National Cybersecurity Strategy

Last update of the initiative: 20/06/2022

 

Strengthening the security of information systems and technologies, and the free and efficient use of cyberspace.

 

Ambition

To enable the free, secure and efficient use of cyberspace by all citizens and public and private entities, while ensuring the protection and defence of cyberspace of national interest.

 

What is it?

Portugal has had a national cybersecurity strategy since 2015. This strategy was revised in 2019, resulting in the National Cybersecurity Strategy 2019–2023.
The Portuguese National Cybersecurity Centre (Centro Nacional de Cibersegurança, CNCS) is the National Cybersecurity Authority. CERT.PT is the national CSIRT and operates within the CNCS. The CNCS is also responsible for coordinating the drafting, monitoring and review of the Action Plan of the National Cybersecurity Strategy 2019–2023, in close cooperation with all entities responsible for cybersecurity.

The implementation of this strategy aims to make Portugal a safer and more prosperous country through innovative, inclusive and resilient action, preserving the core values of the democratic rule of law and ensuring the regular functioning of institutions in the context of the digital evolution of society.

 

Strategic objectives

  • Maximise resilience: Strengthen and ensure national digital resilience by promoting inclusion and networked collaboration, safeguarding cyberspace of national interest against threats that may compromise or disrupt essential information networks and systems.
  • Promote innovation: Foster and enhance national innovation capacity, positioning cyberspace as a domain of economic, social and cultural development and prosperity.
  • Generate and secure resources: Help ensure the allocation of adequate resources to build and sustain national cybersecurity capabilities.

 

Based on the needs associated with each strategic objective, six intervention axes were defined to frame the actions of the Action Plan of the National Cybersecurity Strategy:

 

Cybersecurity governance structure

National structure established by Law No. 46/2018 of 13 August, ensuring the mobilisation of resources, knowledge and skills to address the complexity of cybersecurity challenges, including:

  • The High Council for Cyberspace Security, a consultative body to the Prime Minister with representatives from all relevant stakeholders, ensuring political and strategic coordination; and
  • The National Cybersecurity Centre, as the National Cybersecurity Authority and single national point of contact for international cooperation in cybersecurity.

 

Prevention, education and awareness

  • Anticipate the emergence, evolution and mutation of threats.
  • Encourage citizens to develop digital skills at multiple levels.
  • Strengthen civil society awareness of the safe and responsible use of digital technologies, with particular attention to children, young people, older adults and other at-risk groups.

 

Protection of cyberspace and infrastructures

  • Promote the continuous development of national capabilities and maturity in prevention, detection, response and recovery from adverse cybersecurity scenarios.
  • Promote national and sectoral cooperation frameworks for cyberspace protection, involving both public and private sectors.
  • Ensure the development and application of national and international cybersecurity management frameworks.

 

Threat response and combating cybercrime

  • Develop and consolidate cyber defence capabilities.
  • Assess the need to review and update legislation.
  • Promote sectoral and business forums for sharing operational and technical information and for coordinated incident response.

 

Research, development and innovation

  • Promote scientific production, development and innovation across cybersecurity domains, strengthening national independence in this area.
  • Enhance the country’s scientific, technical and industrial capabilities, with particular focus on critical domains and emerging technologies.
  • Support participation in international R&D&I projects.

 

National and international cooperation

  • Contribute to the regulation and universalisation of cyberspace, promoting respect for applicable international law.
  • Leverage national and international synergies, particularly within the European Union (pooling & sharing), the United Nations and NATO (smart defence).
  • Participate in international cybersecurity and cyber defence bodies to strengthen cooperation and affirm Portugal’s role in this domain.

 

Critical success factors

  • Adequate financial resources aligned with the scale of the strategy’s implementation.
  • Stronger investment in research and development in cybersecurity.

 

Promoters

Coordinating entity:

CNCS