Register
Who's Afraid of High-Risk IT Vendors?

Overview

The Royal United Services Institute (RUSI) and Forum Europe are hosting an interactive discussion in Brussels on new research into how European countries manage high-risk ICT vendors in the public sector and critical national infrastructure.

Five years after the height of debates on banning specific vendors from 5G infrastructure, Europe continues to grapple with how to manage risks associated with so-called ‘high-risk information and communications technology (ICT) vendors’, particularly Chinese organisations that have been restricted or excluded from networks in multiple European countries on national security grounds. Although the EU has launched a range of initiatives, a cross-European approach to managing high-risk vendors has been undermined by inconsistent national implementation. In January 2025, Henna Virkkunen, the EU Commission’s executive vice-president for tech sovereignty, security and democracy, emphasised that ‘the current situation with regards to the 5G Toolbox implementation by Member States is not satisfactory.’

Reports suggest the EU intends to look beyond 5G by creating an ICT Supply Chain Toolbox. However, implementing another toolbox still leaves European technology supply chains vulnerable to the exact patchy implementation that has beset the 5G toolbox and other cybersecurity initiatives.

In 2025, RUSI’s Cyber and Tech research group conducted research across three European countries – Germany, Spain, and the UK – to better understand national approaches to managing high-risk ICT vendors. The purpose of the research was to identify inconsistencies and challenges in designing and implementing effective legislation, regulation, and risk management frameworks, and to assess what this reveals about Europe’s broader security posture and supply chain dependencies.

To discuss findings from research based on more than 30 interviews, RUSI and Forum Europe are bringing together policymakers and industry stakeholders for a one-off event in Brussels. The event will discuss the trade-offs between security and cost in the public sector; the challenges of aligning national policies with EU-level initiatives; and the implications for Europe’s relationship with large technology vendors. The session will be held under the Chatham House Rule to enable a frank and forward-looking conversation.

Register your interest to attend

Confirmed Speakers Include

Kimmo Koski

Managing Director
CSC – IT Center for Science

Alessandra Poggiani

Director General
Cineca

Valeriu Codreanu

Head of High-Performance Computing and Visualization
SURF

Utz-Uwe Haus

Distinguished Technologist, Head of HPE HPC/AI EMEA Research Lab
HPE

Irena Bednarich

Vice President, International Government Relations, EMEA, APJ, LATAM
HPE

Focus Areas

Discover the main topics that will shape our discussions:

Assessing EU-Level Efforts

The effectiveness of initiatives like the 5G Toolbox — and a potential ICT Supply Chain Toolbox — and the challenges created by inconsistent national implementation.

Comparing National Approaches

Insights from Germany, Spain and the UK on how different legislative, regulatory and risk-management frameworks shape the handling of high-risk ICT vendors.

Balancing Security and Cost

How public-sector decision-makers navigate the trade-offs between stronger security requirements and practical, budgetary constraints.

Implications for Europe’s Tech Dependencies

What these findings reveal about Europe’s broader security posture, supply chain vulnerabilities and relationships with major ICT vendors.

Agenda

All timings are in CEST.

15:00 - 15:30

Refreshments and Registration

Jeff Campbell

15:30 - 15:35

Introduction and Welcome

Joe 2

Joseph Jarnecki, Research Fellow, Royal United Services Institute (RUSI

15:35 - 15:45

Report Presentation

Jamie MacColl

Jamie MacColl, Senior Research Fellow, Royal United Services Institute (RUSI)

15:45 - 16:00

Opening Remarks

Bart

Bart Groothuis, Member, European Parliament

16:00 - 16:55

Table-wide Moderated Discussion

Chris_Gow-removebg-preview

Chair: Chris Gow, Head of Brussels Office, Cisco

European Year of Skills, European Union Initiative

Alena T.

Alena Turoňová, Cyber attachée, CZ Permanent Representation to the EU

European Year of Skills, European Union Initiative

Cyber J.

Jakub Dysarz, Cyber attaché, Permanent Representation of the Republic of Poland to the EU

European Year of Skills, European Union Initiative

Kia

Kia Slæbæk Jensen, Cyber attaché/Chair of the Horizontal Working Party on Cyber Issues,
The Danish Permanent Representation to the EU for the Ministry of Resilience and Preparedness

European Year of Skills, European Union Initiative

Zach Meyers, Director of Research, CERRE (Centre on Regulation in Europe)

Zach Meyers, Director of Research, CERRE (Centre on Regulation in Europe)

European Year of Skills, European Union Initiative

Untitled design

Vincenzo Rampulla, Director, WPI Strategy

16:55 - 17:00

Closing Remarks

Jamie MacColl

Jamie MacColl, Senior Research Fellow, Royal United Services Institute (RUSI)

valero

Pastora Valero, Senior Vice President of International Government Affairs, Cisco

17:00 - 17:30

Networking Reception

Event Partners

RUSI

: The Royal United Services Institute (RUSI)

The Royal United Services Institute for Defence and Security Studies (RUSI) is the UK’s leading independent, not-for-profit research institute for security studies. RUSI a UK-registered charity and is politically and administratively independent of any government or funder. RUSI is a British institution but operates with a global perspective with offices in London, Brussels and Nairobi, and a presence in Tokyo and Washington. RUSI’s expertise is sought by governments, multilateral bodies, private-sector businesses and international organisations, with the Institute gaining a reputation for outstanding quality, objectivity and influence.   RUSI’s Cyber and Tech research group brings much needed research focus and capacity to support UK and international strategic responses to cyber security and technology challenges. The team conducts research and hosts events that develop a strong evidence base for policymakers and practitioners alike. The programme has a global outlook. Based in London, it leverages the RUSI network of staff and Associate Fellows and has grown a network of cyber security experts from the public sector, the private sector and academia. RUSI’s Cyber and Tech research is agenda is structured around the following themes:  cyber strategy and statecraft; cyber threats and resilience; and disruptive technologies. The team focuses on different aspects of these themes depending on policy priorities at the time.
Visit WPI STRATEGY

CISCO

Cisco is the worldwide technology leader that securely connects everything to make anything possible. Our purpose is to power an inclusive future for all by helping our customers reimagine their applications, power hybrid work, secure their enterprise, transform their infrastructure, and meet their sustainability goals.
Visit CISCO
Rusi_logo_official - Edited white
FE re-sized