As EU security is an intergovernmental policy area, it has been assumed that the only relevant policy-shapers are member states. However, more recent analyses show that supranational actors, like the Commission, have developed strategies to enhance their role in this traditionally interstate realm. This article endorses this reasoning and intends to cast some light on these strategies. Building on Kingdon's concept of the policy entrepreneur and using EU's cybersecurity policy as an empirical case, we analyse the Commission's initiatives to draft a European response to cybercrime, in order to answer one central research question: how has the Commission managed to secure a prominent role in a highly salient security issue? The findings suggest that the Commission, acting as a policy entrepreneur, purposefully explored a market–security nexus in order to influence an otherwise intergovernmental security domain. Ultimately, the Commission was a much more relevant player than expected.

中文翻译：

---

打市场牌：委员会塑造欧盟网络安全政策的战略

由于欧盟安全是一个政府间政策领域，因此假设唯一相关的政策制定者是成员国。然而，最近的分析表明，像委员会这样的超国家行为者已经制定了战略，以加强他们在这个传统的州际领域中的作用。本文赞同这一推理，并打算对这些策略进行一些说明。基于 Kingdon 的政策企业家概念，并以欧盟的网络安全政策为实证案例，我们分析了欧盟委员会起草欧洲网络犯罪应对措施的举措，以回答一个核心研究问题：欧盟委员会如何确保发挥重要作用在一个非常突出的安全问题上？调查结果表明，委员会作为政策企业家，有目的地探索市场与安全的关系，以影响其他政府间的安全领域。归根结底，委员会是一个比预期更重要的参与者。