19-20 March 2026 | Porto, Portugal
The 27th Plenary of the European Energy Information Sharing & Analysis Centre (EE-ISAC) took place in Porto, hosted by our member E-REDES. Over two days, participants engaged in in-depth discussions, shared operational and strategic insights, and explored practical solutions to strengthen Europe’s energy sector against evolving cyber threats.
Members-Only Session: Governance, Strategy, and Community Development
The Plenary opened with a members-only session, providing a dedicated space for internal discussions on organisational priorities, decision-making, and the evolution of the EE-ISAC community.
Key highlights included:
✅ Opening remarks from Aurelio Blanquet (Secretary General), Nuno Medeiros (E-REDES), and Massimo Rocca (Enel), providing key updates, alongside membership developments including the status of aspiring members and formal voting on new entrants, with the addition of Creos Luxembourg S.A and RWE
✅ Review of governance matters and financial overview, including approval of the 2025 financial closure and adoption of the 2026 budget
✅ Updates on the Task Forces of Advocacy, Communications, Threat Intelligence Forum and Physical Security, highlighting ongoing workstreams and future objectives
A key moment of the session was an in-depth presentation on the December 2025 cyberattack on the Polish power system by Radosław Dumański (Polskie Sieci Elektroenergetyczne S.A.), providing operational insights and lessons learned for the community.
Open Session: Policy, Threat Intelligence, and Sectoral Resilience
The second day featured contributions from national authorities and EU-level stakeholders, enabling a forward-looking dialogue on cybersecurity policy and operational resilience.
Programme highlights included:
🔹 Panel on the NIS2 Directive and NCCS with representatives from ENISA, the European Commission (DG CNECT), and leading energy companies
🔹 Panel on ISACs from European and national perspectives, exploring coordination and best practices across Member States
🔹 Interactive “What the Hack” cybersecurity simulation game
🔹 Threat intelligence overview, focusing on emerging risks and evolving attack vectors
🔹 Technical briefing on the reconstruction of the Polish energy cyberattack
A key discussion addressed the Cyber Resilience Act and Cybersecurity Act, emphasizing their implications for supply chain security and industry compliance.
From Strategy to Practice: Technical Visit and Networking Activities
The Plenary also featured a series of networking and engagement activities designed to strengthen connections within the community. Participants enjoyed a historic tour of Porto, followed by a networking dinner in Vila Nova de Gaia. The programme concluded with a technical visit to E-REDES premises, offering valuable insights into operational practices and infrastructure.
Trusted Information Sharing as the Foundation of Europe’s Energy Security
The 27th EE-ISAC Plenary highlighted the importance of trusted information sharing, cross-border cooperation, and ongoing dialogue between public and private stakeholders. As cyber threats evolve in scale and sophistication, the EE-ISAC community continues to lead efforts in enhancing Europe’s energy security and building a resilient, collaborative ecosystem for the future.
