Federal government reaffirms: Cyberagentur as an indispensable part of a long-term German security architecture
The Federal Government confirms in its answer to a minor interpellation by Bündnis 90/Die Grünen[1] the strategic role of the Cyberagentur – including its integration into the National Security Strategy. Strict quality gates and competition ensure that only the best approaches are continued. With 14 ongoing programs and further projects being put out to tender, the mission is being consistently implemented.
The Federal Government’s response (Bundestag printed paper 21/3729 dated January 20, 2026) to a minor interpellation by the Bündnis 90/Die Grünen parliamentary group sends a clear signal for Germany’s cybersecurity research: “Its activities are an indispensable part of a long-term German security architecture.” This confirms the Cyberagentur as a strategic instrument for strengthening digital sovereignty in the long term.
The Cyberagentur is part of the National Security Strategy of the Federal Republic of Germany and is thus explicitly anchored in the federal government’s overall security policy approach.
Role in the overall picture of federal research and innovation funding
In the federal security and defense landscape, agencies, authorities, hubs and innovation labs work with different mandates – from short-term testing to long-term basic and key technology research. The Cyberagentur complements this system where the state needs staying power: in high-risk, potentially disruptive projects that combine the application-relevant needs of internal and external security at an early stage – and increasingly also in clear dual-use constellations (civilian and defense-related usability). “If we take dual-use technologies seriously, we need to set up research today in such a way that it can be used in real security situations tomorrow – with scientific depth but a clear impact perspective,” says Prof. Dr. Christian Hummert, Research Director of the Cyberagentur, assessing the importance of this. With the 2026-2030 strategy, the Cyberagentur is further sharpening this role – as a think tank, transfer engine and with research depth up to higher maturity levels (TRL 5/6), where it becomes crucial for the transition to real security impact.
Competition, speed and reliable selection: Procurement tools in practice
In its response, the German government describes the Cyberagentur as a client that sets up programs via competitive procedures. Several teams work in parallel within the various research programs and along defined milestones to decide which approaches will go to the next stage. In addition to the established PCP (Pre-Commercial Procurement) process, the Cyberagentur also uses ideas competitions and challenges to identify viable ideas from individuals, start-ups and research teams from universities, colleges and research institutions particularly quickly and transform them into disruptive, user-oriented programs.
Quality through quality gates: project terminations as a control principle, not as a weakness
In its response, the German government transparently explains that 26 projects within programs were not pursued further – for example, because defined milestones at quality gates were not reached or competing teams presented more convincing results or methodologies. Prof. Dr. Christian Hummert emphasizes the benefits of the consistent selection mechanism: “If you want speed and excellence, you need tough interim decisions. Quality gates are not a brake pad – they are the means to ensure speed and quality at the same time.” At the same time, it should be noted that a complete program has not yet been aborted. This is proof of a functioning, quality-oriented management system in a competitive environment – with clear consequences if approaches do not bear fruit.
As far as the Cyberagentur’s current performance is concerned, six projects have now been completed. With 14 ongoing research programs, 5 projects in the tendering phase and 7 projects in preparation for tendering, the Cyberagentur is on a stable course to visibly fulfill its mission: “We are researching what will be top class in cyber security in ten to 15 years – to protect the internal and external security of our country.”
More speed in the system: thoughts on a freedom law
In view of the dynamic security situation and the increasing pressure to innovate, there is also a discussion on how government cyber security research can be brought into effect more quickly. In this context, considerations to initiate a Freedom Act for the Cyberagentur are also being strengthened in order to further accelerate procedures without relativizing the described quality and ethical standards.
Hummert formulates the requirement as follows: “If the threat situation becomes faster, research must also become faster. A Freedom Act can help to reduce bureaucracy – but not at the expense of research security, ethics and robust governance.”
Ethics and governance structures – Commission as a unique selling point
With regard to question 55 of the minor interpellation (ethical guidelines and governance structures for AI systems related to defense and security), the Federal Government emphasizes that the Cyberagentur has a guideline on ethical and socio-technical issues and has established a commission for ethics and security-related research. This provides advice as a central point of contact, has a red button system for requesting opinions on highly ethical issues and regularly incorporates ethical studies into tender documents, in parallel with technical research. This sets a clear standard: Speed of innovation yes – but with a traceable chain of responsibility.
Further information and registration:
https://www.cyberagentur.de/agentur/ueber-uns/