With cyberattacks on the rise and increasingly targeting smaller organisations, SMEs/SMIs and local authorities are now seen as the weak links in cybersecurity. Limited resources, heterogeneous infrastructure and a lack of awareness mean that these players are highly vulnerable, despite performing functions that are essential to the economy and everyday life. However, there is a clear mismatch between the specific needs of these organisations and the current offering in terms of cybersecurity. In this context, what responsibilities do public authorities, cybersecurity service providers and contractors have? How can we build a more accessible, clearer and better tailored cybersecurity offering that takes into account their constraints, in order to rethink cybersecurity that is trustworthy and adapted to the realities on the ground?
