Artificial Intelligence, Automated Ratings, and Future Scenarios Demand a Paradigm Shift
The national event held on March 25th in Rome, entitled “Cybersecurity and Cohesion Policies”, organized by the National Agency for Microcredit (ENM) and the European Digital Innovation Hub (EDIH) MicroCyber, emphasized the urgent need for convergence between Italian and European public initiatives to strengthen the cyber resilience of the productive sector.
The event was opened by the Minister Tommaso Foti, who reiterated the critical importance of cybersecurity education—particularly for SMEs—and by Mario Baccini, President of ENM, who reaffirmed the centrality of cybersecurity in the ENM’s agenda and its relevance within inclusive finance policies. High-level representatives from MIMIT, ACN, the European Commission, ECCC, Postal Police, and the National Agency for Microcredit engaged in a dialogue that highlighted the necessity of a coordinated response to cybersecurity threats—not only for digital safety, but also for economic growth and the overall competitiveness of Italy and Europe. This perspective was reinforced by Senator Francesco Zaffini, President of the 10th Standing Committee and Chair of the Joint Committees on Artificial Intelligence.
Cybersecurity has indeed become an absolute priority in the European landscape, representing a fundamental precondition for a secure digital transition. As Despina Spanou, Principal Adviser for Cybersecurity Coordination at the European Commission, illustrated, the EU has already adopted several legislative measures, including the Cyber Resilience Act, Cyber Solidarity Act, and NIS2 Directive, aimed at creating a common digital resilience framework. Substantial investments have also been made in training activities. Nevertheless, digitally underdeveloped enterprises remain at high risk, potentially jeopardizing the broader production ecosystem. In this light, cybersecurity becomes essential to the success of cohesion policies, mitigating the risk of failure due to increasingly sophisticated cyber threats.
As noted by Riccardo Graziano, Secretary General of ENM:
“Today more than ever, the National Agency for Microcredit affirms its strategic role in promoting protective instruments for microenterprises, which account for over 92% of Italy’s productive fabric. Digital transformation and cybersecurity are no longer ancillary issues; they are fundamental conditions for economic and social sustainability. We must guide these actors in strengthening their digital skills and raising awareness of emerging risks. An integrated institutional response is needed: synergy between institutions, strategic use of cohesion funds for cybersecurity purposes, and widespread training. Cyberattacks are among the most pervasive threats today. Artificial intelligence, automated ratings, and future technological scenarios require a shift in vision. We must rise to the occasion—build windmills, not walls.”
The conference clearly outlined the pivotal role that European Digital Innovation Hubs (EDIHs) can play in implementing these policies. The EDIH network is a key strategic instrument of the Digital Europe Programme, aiming to support the digital transformation of SMEs and public administrations by fostering the spread of expertise in cybersecurity, artificial intelligence (AI), and high-performance computing (HPC). Thirteen EDIHs, funded by European funds, are currently active in Italy.
With the AI Act coming into force in 2024, the European Commission, through DG CONNECT, has decided to formally integrate the EDIH network under the oversight of the new European Artificial Intelligence Agency. This development marks a historic step, considering that over 80% of the 151 EDIHs funded across Europe are already engaged in AI-related initiatives. Roberto Viola, Director-General of DG CONNECT, underscored that AI will become the core mission of the EDIHs, aiming to familiarize SMEs with the advanced and responsible use of these technologies. Lucilla Sioli, Director of the AI Office, further noted that EDIHs have already delivered over 18,000 services to more than 10,000 SMEs and public organizations, demonstrating the growing impact of the network.
In alignment with this direction, the new Digital Europe Programme call focuses specifically on consolidating the EDIH network with a strategic emphasis on AI. Dr. Raffaele Spallone, Head of Division II – Policies for Business Digitalization, Innovation, and Sector Analysis at MIMIT, emphasized the importance of the evolution of the Italian EDIH ecosystem:
“Digitalization and the transfer of technologies and knowledge are crucial and indispensable elements for the competitiveness of the Italian production system and, as such, represent a central pillar of the country’s industrial policies.”
The National Recovery and Resilience Plan (NRRP) has been—and continues to be—a major opportunity to reorganize Italy’s technology transfer system. Through Investment 2.3 of Mission 4, Component 2, true ecosystems of innovation have been financed, fostering highly qualified human capital and creating high value-added employment.
Through the establishment of EDIHs and Centers of Competence, Italy has developed a widespread system capable of delivering services with consistent quality standards, standardized access procedures, and fostering synergies and collaborative frameworks. MIMIT considers the collaboration between all system stakeholders as strategic to promote the secure digital transformation of the national business landscape. The goal is to strengthen this network to build a more cohesive system, capable of transferring advanced technological knowledge to enterprises and public administrations, with a particular focus on cybersecurity and AI. The ultimate aim is to ensure sustainable, inclusive, and resilient competitive growth, with full engagement of local territories and economic actors.
At the national level, the regulatory framework on AI is rapidly evolving, notably with the Senate’s recent approval of Decree Law 1146, which aims to establish a clear and responsible framework for AI adoption, based on anthropocentric principles and stringent attention to security and the protection of fundamental rights. The law assigns key oversight responsibilities to the National Cybersecurity Agency (ACN) and AgID (Agency for Digital Italy), covering the entire AI lifecycle. Moreover, the decree introduces specific regulations for critical sectors such as healthcare, justice, and public administration, stressing the importance of transparency and accountability in AI usage.
Simultaneously, as already reported by ENISA (European Union Agency for Cybersecurity), the widespread use of AI enables the automated creation of customized malware and sophisticated voice frauds based on deepfake technologies, thereby increasing the risks of misinformation, identity theft, and social destabilization. In this context, cybersecurity must necessarily evolve—anticipating new AI-driven threats and enhancing the system’s capacity to address increasingly complex challenges.
For all these reasons, the National Agency for Microcredit is paying growing attention to AI and its profound implications for cybersecurity. As noted by Giovanni Nicola Pes, Deputy Secretary General of ENM and Director of MicroCyber:
“The technological landscape is evolving very rapidly, posing significant challenges for European regulators, the productive system, and public administrations to adapt and govern highly complex processes. It is therefore essential to respond to these challenges in a coordinated manner, fully leveraging the EDIH network to promote concrete solutions that enhance the protection of information systems and strengthen the competitiveness of the European economic system through digital innovation.”
