Schedule Demo

INCIDENTRON

3 - Incidentron transparent background

About the INCIDENTRON Project

Navigating the complex landscape of cybersecurity incident reporting is a growing challenge for European organisations. Currently, a single incident may trigger multiple reporting obligations to different authorities under overlapping regulations such as NIS2, DORA, GDPR, the Critical Entities Resilience (CER) Directive, and the Cyber Resilience Act (CRA). This fragmented and repetitive process forces cybersecurity teams to spend valuable time on administration instead of focusing on incident response and recovery.

To address this, the INCIDENTRON project introduces a unified and coordinated approach based on the principle: “One incident, one workflow.”

Funded by the European Union, INCIDENTRON is building a modular, scalable architecture and an open-source platform that streamlines and automates end-to-end incident reporting. The platform serves essential and important entities, Managed Security Service Providers (MSSPs), national CSIRTs, and European authorities. By harmonising reporting workflows, INCIDENTRON reduces administrative burdens, accelerates incident response times, and facilitates cross-border collaboration and threat intelligence sharing.

CDeX Role in the Project

While the core INCIDENTRON platform automates reporting and gathers threat intelligence, CDeX ensures this data is transformed into actionable capabilities and operational preparedness. As experts in advanced cybersecurity training, CDeX brings its leading Cyber Range platform to the project to actively strengthen Europe’s cyber resilience.

Within INCIDENTRON, CDeX leads critical technical and training initiatives, specifically focusing on:

Incident-Driven Cyber Range Scenarios: CDeX will design, develop, and deploy five highly advanced, simulation-driven Cyber Range exercises (Red Team / Blue Team). These scenarios will be directly inspired by real-world threat intelligence and incidents reported through the INCIDENTRON platform.

Critical Infrastructure (OT/SCADA) Simulations: A key deliverable includes a specialised scenario simulating a cyberattack on a city utilities control system (covering water and energy infrastructure). This exercise will integrate real Operational Technology (OT) components provided by partner S2 Grupo’s Industrial Lab.

By providing realistic digital twins of complex IT/OT environments, automated threat detection, and advanced forensic analysis capabilities, CDeX empowers organisations to test and improve their crisis response strategies against the most severe threats.

Funding Information:

This project has received funding from the European Union’s Digital Europe Programme under grant agreement No 101249201.

Project Duration: 36 months (November 2025 – October 2028).
Official Website: www.incidentron.eu.