Romanian National Computer Security: A Comprehensive Overview

Introduction

Romania has emerged as a significant player in the field of cybersecurity within Europe. As cyber threats have escalated globally, Romania has strengthened its national computer security infrastructure through legislation, institutional frameworks, and international cooperation. This article explores the key components, roles, and initiatives that define Romania’s national computer security landscape.

1. National Cybersecurity Framework

1.1 Legal Framework

Romania’s cybersecurity efforts are built on a robust legal and regulatory foundation. The most relevant legislative acts include:

Cybersecurity Law (2023 update) – This law defines the national cybersecurity architecture, including the roles of government and private entities in protecting critical information infrastructures.
Law No. 362/2018 – Implements EU Directive NIS (Network and Information Security), outlining security obligations for operators of essential services and digital service providers.
GDPR (General Data Protection Regulation) – Enforced in Romania as part of EU regulations, ensuring personal data security and privacy.

1.2 National Cybersecurity Strategy

Romania’s National Cybersecurity Strategy 2021–2026 outlines objectives such as:

Strengthening national cyber defense capabilities.
Securing critical infrastructures (e.g., energy, finance, healthcare).
Enhancing public-private cooperation.
Promoting cybersecurity education and workforce development.

2. Key Institutions

2.1 National Cyber Security Directorate (DNSC)

The DNSC (Direcția Națională de Securitate Cibernetică) is the primary authority for cybersecurity in Romania. Established in 2021, it replaced CERT-RO and consolidated national cyber defense functions. Key responsibilities include:

Monitoring and responding to cyber threats.
Coordinating national incident response.
Managing cyber threat intelligence.
Supporting cybersecurity awareness and training campaigns.

Website: dnsc.ro

2.2 Romanian Intelligence Service (SRI) – Cyberint

The Cyberint unit within the Romanian Intelligence Service (SRI) plays a central role in protecting national security from cyber threats. Its tasks include:

Intelligence collection and analysis related to cyber activities.
Counter-cyber espionage.
Securing communications and information networks used by state institutions.

2.3 Ministry of National Defense

The Romanian Ministry of Defense is responsible for military cyber operations and contributes to the protection of defense-related information systems. It participates in NATO-led cyber exercises and collaborates on EU defense cybersecurity initiatives.

2.4 Romanian Police – Cyber Crime Unit

Part of the Directorate for Combating Organized Crime, this unit investigates cybercrime such as:

Phishing, hacking, and DDoS attacks.
Financial fraud and identity theft.
Online child exploitation and illegal content distribution.

3. Public and Private Sector Collaboration

Romania has established several mechanisms to foster collaboration between government, academia, and industry:

National Forum for Cybersecurity – Promotes dialogue and joint initiatives across sectors.
Public-private partnerships (PPPs) – Encouraged through joint research, knowledge sharing, and cooperative defense mechanisms.
Cybersecurity Clusters – Encourage startups, universities, and tech companies to innovate in cybersecurity solutions.

4. International Cooperation

Romania actively participates in global cybersecurity efforts:

4.1 NATO

As a NATO member, Romania contributes to collective defense through:

Participation in NATO Cyber Coalition exercises.
Hosting the European Cyber Security Industrial, Technology and Research Competence Centre (ECCC) in Bucharest, established by the EU in 2023.

4.2 European Union

Romania aligns with EU cybersecurity policies, including:

Implementation of the NIS2 Directive.
Membership in ENISA (European Union Agency for Cybersecurity).
Support for EU digital sovereignty initiatives.

4.3 Bilateral Agreements

Romania has signed cybersecurity cooperation agreements with:

The United States (Strategic Partnership).
Germany, France, and other EU nations.
Regional initiatives such as the Three Seas Initiative.

5. Cybersecurity Workforce and Education

Romania is investing heavily in education and training to address the cybersecurity skills gap:

University programs – Offered at institutions such as the University of Bucharest, Politehnica University, and Babeș-Bolyai University.
National Cyber Security Training Platform (RoEduCyber) – Provides simulation-based learning for students and professionals.
Hackathons and Cyber Competitions – Events like “DefCamp” promote skills development and networking among cyber professionals.

6. Recent Threats and Responses

6.1 Notable Cyber Incidents

2022 DDoS attacks – Pro-Russian hacker groups targeted Romanian government websites amid tensions related to the Ukraine conflict.
Healthcare ransomware attacks – Several hospitals faced data breaches and system lockdowns, prompting reviews of healthcare cybersecurity protocols.

6.2 DNSC Response

In each case, DNSC coordinated incident response, provided technical support, and collaborated with international partners to track threat actors and mitigate damage.

7. Future Outlook

Romania is expected to further enhance its cyber capabilities through:

Greater automation in threat detection and response.
AI-driven cybersecurity solutions.
Expansion of public cyber education initiatives.
Continued alignment with EU and NATO cybersecurity priorities.

Conclusion

Romania’s national computer security infrastructure is evolving rapidly to meet the challenges of an increasingly hostile cyber landscape. With strong institutional support, international partnerships, and a growing cybersecurity ecosystem, Romania is poised to play a central role in shaping Europe’s digital resilience.