GOV.SI
Home
State Authorities
Government Offices
Government Information Security Office
About the Office

Certification and Compliance Division

In Certification and Compliance Division we perform the functions of the national authority in the field of cybersecurity certification and ensure the implementation of the European cybersecurity certification framework in the Republic of Slovenia. We are responsible for the development, implementation and supervision of certification procedures, as well as for ensuring the alignment of the national certification system with European legislation and certification schemes.

The Certification and Compliance Division is an internal organisational unit of the Government Information Security Office of the Republic of Slovenia. We carry out the tasks of the national cybersecurity certification authority and ensure the compliance of certified products, services and processes with the European and national legal framework for cybersecurity under Regulation (EU) 2019/881 (Cybersecurity Act).

We represent the central point for the implementation of the Republic of Slovenia’s obligations in the field of cybersecurity certification under the European cybersecurity certification framework and Regulation (EU) 2024/2847 (Cyber Resilience Act).

Our activities focus on establishing a transparent, trustworthy and legally compliant certification system that supports the security of digital products and services and strengthens the trust of users and the market. We ensure that certification procedures in the Republic of Slovenia are carried out in accordance with European certification schemes, with a clear separation of responsibilities between accreditation, certification and market surveillance.

In this role, we act as a coordinating body between European institutions, national stakeholders and competent supervisory authorities. We coordinate with the European Union Agency for Cybersecurity (ENISA), the European Commission, the Slovenian Accreditation body and market surveillance authorities, while also providing national coordination and expert support for the implementation of certification schemes.

We also play an important role in the development of the national certification framework, the preparation of implementing legislation and the support of the implementation of European cybersecurity resilience legislation. Through our activities, we contribute to increased cybersecurity resilience, legal certainty and the competitiveness of the Slovenian digital environment within the European area.

Tasks of the division:

  • managing notification procedures for conformity assessment bodies to the European Commission and maintaining the register of accredited and notified conformity assessment bodies;

  • preparing national rules, procedures and frameworks for the implementation of certification schemes under the Cybersecurity Act and the Cyber Resilience Act;

  • performing technical and legal alignment of national certification procedures with European certification schemes;

  • monitoring the compliance of conformity assessment bodies and the correct implementation of certification procedures;

  • verifying the implementation of certification schemes and preparing recommendations and measures in cases of identified non-compliance;

  • cooperating with the market surveillance authority on matters relating to products and services with digital elements placed on the market;

  • managing and maintaining the national register of issued certificates and ensuring reporting to European institutions;

  • preparing annual reports on the implementation of certification schemes and reporting to the European Union Agency for Cybersecurity and the European Commission;

  • participating in European expert and coordination working groups in the field of cybersecurity certification;

  • participating in European peer reviews of national cybersecurity certification authorities;

  • contributing to the preparation of implementing legislation and other regulatory solutions for the transposition of European cybersecurity resilience legislation into the Slovenian legal order;

  • coordinating procedures with the Slovenian Accreditation body in the field of cybersecurity certification;

  • cooperating with the National Coordination Centre for Cybersecurity in awareness-raising activities, compliance promotion and stakeholder support;

  • participating in exercises, preparedness systems and other activities organised by the Government Information Security Office of the Republic of Slovenia;

  • contributing to the preparation and updating of strategic cybersecurity documents;

  • performing other tasks defined by European and national legislation and other tasks within our field of responsibility.

Certification and Compliance Division

Government Information Security Office

Ulica gledališča BTC 2
1000 Ljubljana

Na vrh strani...