Imagine your city's hospital, water treatment plant, and metro system all rely on computers now — but each one bought its own security system from a different vendor, and none of them talk to each other. CIPSEC built a single security command center that connects all those different products so they work together, catching threats that would slip through the cracks between them. They tested it in real hospitals, transport systems, and environmental monitoring stations across Europe. Think of it like replacing a dozen separate alarm systems with one smart security hub that covers every door and window.
Critical infrastructure operators — hospitals, transit authorities, utilities — now depend on connected IT and OT systems, but their cybersecurity is a patchwork of products from different vendors that don't communicate with each other. This leaves dangerous gaps where threats slip through undetected, especially between IT office networks and OT operational systems. A single coordinated attack can exploit these gaps to disrupt essential public services.
CIPSEC built a unified security platform that orchestrates multiple heterogeneous security products — including anomaly detection, denial-of-service protection, forensics analysis, and vulnerability testing — into a single coordinated defense for both IT and OT environments. The project produced 33 deliverables and validated the system through field trials in 3 real critical infrastructure pilots covering transportation, health, and environmental monitoring.
If you are a hospital group dealing with rising cyber threats to connected medical devices and patient data systems — this project developed a unified security platform that orchestrates multiple security tools across both IT networks and operational medical equipment. It was field-tested in a real healthcare pilot environment with 15 consortium partners contributing different security capabilities.
If you are a transport operator dealing with cyber risks to signaling, ticketing, and control systems — this project developed an integrated security solution covering both IT office systems and OT operational networks. The platform was validated in a real transportation pilot, combining anomaly detection, denial-of-service protection, and forensic analysis into one coordinated defense.
If you are a utility or environmental services provider dealing with fragmented cybersecurity across sensors, SCADA systems, and data networks — this project built a security orchestration layer that unifies products from different vendors into a single protection system. It was piloted in a real environmental monitoring infrastructure with contributions from 9 industry partners.
The project's EU contribution amount is not available in the dataset, so specific development costs cannot be stated. However, the solution integrates existing commercial security products rather than replacing them, which means the cost is primarily in orchestration and integration rather than buying entirely new infrastructure. Contact the coordinator through SciTransfer for pricing discussions.
The system was validated across 3 different critical infrastructure environments — transportation, health, and environment — each with distinct security requirements. The architecture is designed to orchestrate heterogeneous security products, meaning it can scale by adding more vendor tools to the unified platform. The consortium of 15 partners across 8 countries built it for cross-border, multi-sector deployment.
The project was coordinated by ATOS SPAIN SA, a major IT services company, with 9 industry partners in the consortium. As an Innovation Action under Horizon 2020, IP is typically retained by the partners who developed each component. Licensing arrangements would need to be negotiated through the consortium, starting with ATOS as coordinator.
CIPSEC was developed during 2016-2019, before the NIS2 Directive. However, the project explicitly included standardization work and addressed critical infrastructure protection requirements that align with the direction of NIS2. The framework includes vulnerability testing, forensics analysis, and training — all elements now expected under current EU cybersecurity regulation.
The core design principle is orchestrating existing heterogeneous security products rather than replacing them. The project produced 33 deliverables including integration specifications and field trial results. Based on available project data, the 3 pilot deployments each required adapting to different infrastructure types, suggesting integration timelines vary by environment complexity.
The project officially closed in April 2019. However, the coordinator ATOS SPAIN SA is a major global IT services company with ongoing commercial operations in cybersecurity. Several of the 9 industry partners likely continue to develop and support their respective security components commercially.
CIPSEC's consortium of 15 partners across 8 countries is heavily industry-driven at 60%, with 9 industry players including coordinator ATOS SPAIN SA — one of Europe's largest IT services companies. The 4 SMEs bring specialized cybersecurity capabilities, while 3 universities and 2 research organizations provide the technical research backbone. Partners span from Spain, Germany, and Italy to Israel, Greece, Romania, Switzerland, and the UK, giving the solution exposure to diverse regulatory environments and infrastructure types. For a buyer, this means the technology has been shaped by companies that actually sell and deploy security products, not just by academics.
ATOS SPAIN SA is the coordinator — SciTransfer can facilitate a direct introduction to the right technical contact within their cybersecurity division.
Want to know if CIPSEC's unified security platform fits your infrastructure? Contact SciTransfer for a tailored briefing and warm introduction to the development team.
