COcyber Batch #2 Ambassadors in the Spotlight: Iva Tasheva

It’s been a full year since COcyber launched its Ambassador Programme, and with two cohorts now completing their journeys, the network keeps growing stronger. The first ambassadors helped shape the dialogue around Europe’s cybersecurity cooperation, and over the past six months, a second group has carried that momentum forward, connecting new voices, new perspectives, and new countries.

Together, the two batches have built a bridge between policy, research, defence, and industry, showing how shared expertise can drive a more resilient digital Europe.

As the second round comes to a close, we look back on the journey of our ambassadors and the insights they’ve shared along the way. In this article, we spoke with Iva Tasheva about her work, her perspective on European cybersecurity, and her message as this six-month chapter concludes.

Q: Who are you, and what is your professional background?

I am the co-founder and cybersecurity lead at CYEN, an award-winning cybersecurity solutions provider based in Brussels and established in 2018. Our focus is on pragmatic, business success-oriented cybersecurity risk and compliance solutions tailored to each client’s context. CYEN supports organisations in the financial, manufacturing, public, and digital sectors, helping them address their cybersecurity challenges while maintaining operational efficiency.

In addition to my work with CYEN, I served as a member of the ENISA Ad-Hoc Working Groups on Enterprise Security and Cloud Security (Certification), and as a Board Member of Women4Cyber Belgium.VA 

My work has been recognised through several awards, including BeNeLux Outstanding Female Security Professional Award (OSPA) 2024, Belgium Cybersecurity Personality of the Year 2022, and inclusion in Santander/CODIB’s ‘35 under 35’. I am also a published author, speaker, and advocate for practical, risk-based approaches to cybersecurity.

I hold an MBA from KU Leuven and a Master’s degree in Cybersecurity from the New Bulgarian University. I am certified as an ISO 27001 Lead Implementer, ISO 27799 Lead Manager, and DORA Senior Lead Manager.

Q: Since when and how are you involved in the European cybersecurity sector?

I have been actively involved in the European cybersecurity sector since 2015. In the early years, my work focused on helping the European Union shape its cybersecurity priorities and agenda, contributing to the development of legislation, standards, and strategic frameworks.

Since founding CYEN in 2018, I have shifted towards supporting European organisations in implementing these frameworks — helping them translate policy and regulation into practical risk management measures. My work bridges policy and implementation, turning abstract requirements into clear, actionable strategies that improve cybersecurity maturity and compliance. Today, we help them automate the process, providing SaaS solutions based on know-how and empowered by technology. 

Q: From your perspective, what are the main challenges in the collaboration of the civilian and defence cybersecurity sectors in Europe?

The main challenge lies in the different nature and pace of both sectors. They face distinct threats, operate under different pressures, and rely on separate taxonomies, frameworks, and performance indicators.

The civilian sector tends to be open, agile, and reactive, focused on business continuity and responding to low- to medium-complexity attacks. The defence sector, on the other hand, operates in a hierarchical and highly controlled environment, handling classified information and closed systems.

Because of this, solutions developed for one sector rarely fit the other without major adaptation. Frameworks, tools, and even terminology often diverge, creating a barrier to collaboration and mutual understanding.

Q: Again, from your perspective, what are the most crucial steps to address these challenges and strengthen Europe’s joint digital safety efforts?

The first step is to build a common taxonomy and shared frameworks, so both sectors can align around a unified language and comparable standards. Identifying priority collaboration areas and leveraging joint resources, information channels, and existing cooperation forums will also make a major difference.

We need to recognise where civilian and defence cybersecurity efforts overlap — and where they don’t — and focus on those intersections where knowledge exchange brings the highest value. Creating collaborative pillars around shared priorities can help Europe become more agile and coordinated in its collective response to threats.

Q: Did your experience as a COcyber Ambassador align with what you expected at the beginning, and what are your key reflections now that the journey is ending?

My time as a COcyber Ambassador has been transformative and deeply impactful. I collaborated with dedicated professionals, advancing cybersecurity collaboration and capacity building across Europe. Contributing my governance and compliance expertise felt truly meaningful. 

Moderating the COcyber fireside chat at the 28DIGITAL Makers & Shapers Report launch was a standout moment - bridging policy and industry, fostering an open dialogue and trusted partnerships between civilian and defense sectors. Furthermore, the diversity of perspectives and best practice sharing enriched my experience. I experienced significant personal growth through challenging, insightful discussions. 

The journey reinforced my belief in the power of community-driven progress. What I have set as my objective: collaborate, leverage, share was achieved. As we move forward, I’m excited to support the next cohort and encourage others to join this movement for change.