In a strategic step towards strengthening national defense in the digital space, the Council of Ministers approved the National Cybersecurity Strategy 2025–2030 and its Action Plan 2025–2027, defining Albania’s new vision for building a secure, sustainable and inclusive ecosystem in the digital age.
Drafted in implementation of Law No. 25/2024 “On Cybersecurity”, the strategy represents a guiding document that aligns national policies with the European NIS2 directive, the eIDAS2 digital identity regulation, and the EUCC cybersecurity certification framework, placing Albania in line with European Union and NATO standards.
Five fundamental policies for national digital security
The strategy is built on five key policies that form the backbone of national digital protection
-
Protection of digital infrastructure, which ensures the continuity of public and private services and includes preventive measures and real-time response to cyber incidents.
-
Online protection of citizens and promotion of cyber culture, through digital education, public awareness, and the prevention of cybercrimes such as bullying, fraud, and disinformation.
-
Strengthening international cooperation, aiming for full integration into EU and NATO networks for information exchange and collective response to threats.
-
Promoting innovation and scientific research, through the establishment of the National Center of Excellence for Cybersecurity (NCESK) and support for start-ups and research projects in advanced technologies such as AI, data analysis, and cryptography.
-
Increasing resilience to hybrid threats, to protect institutions and society from combined risks involving cyber intrusions, disinformation, and information manipulation.
Action Plan 2025–2027: from strategy to concrete implementation
The Action Plan 2025–2027 is the operational document that translates the strategic vision into concrete measures, divided according to responsible institutions, with defined timelines and measurable indicators for each objective.
The plan also includes an analysis of financial resources for each measure, based on the “Activity Based Costing” methodology, ensuring transparency and accountability throughout the implementation process.
Implementation and coordination
The implementation of the strategy will be led by the National Cyber Security Authority (AKSK), which will have the inter-institutional coordinating role for monitoring, reporting, and achieving the defined objectives.
Each responsible institution will report on annual progress, while AKSK will prepare the national report on the implementation of the Strategy and Action Plan, which will be published every year for public transparency.
Strategjia Kombëtare për Sigurinë Kibernetike 2025-2030
Plani i Veprimit 2025-2027 i Strategjisë Kombëtare të Sigurisë Kibernetike 2025-2030