-
New Guidelines for Telecom and 5G Security
-
ENISA issues new guidelines to support Europe’s telecom security authorities in implementing the security requirements of the European Electronic Communications Code (EECC) and the EU 5G toolbox. The guidelines and associated 5G supplement underline the importance of a common approach to telecom security for the Digital Single Market.
Located in
News
/
ENISA News
-
Guidelines on assessing DSP security and OES compliance with the NISD security requirements
-
This report presents the steps of an information security audit process for the OES compliance, as well as of a self-assessment/ management framework for the DSP security against the security requirements set by the NIS Directive. In addition, it provides an analysis of the most relevant information security standards and frameworks to support OES and DSP in practicing the above exercises in the most tailored and efficient manner.
Located in
Publications
-
Information Security Audit and Self – Assessment Frameworks for operators of essential services and digital service providers
-
ENISA publishes today a report with good security self-assessment and audit practices for national competent authorities (NCA), digital service providers (DSP) and operators of essential services (OES).
Located in
News
/
ENISA News
-
Incident Response in Europe, post-NIS Directive
-
ENISA, the European Union Agency for Cybersecurity releases ‘EU Member States Incident Response Development Status Report’, a analysis of current operational Incident Response (IR) set-up within the NIS Directive sectors.
Located in
News
/
ENISA News
-
Guidelines - Cyber Risk Management for Ports
-
This report aims to provide port operators with good practices for cyber risk assessment that they can adapt to whatever risk assessment methodology they follow. In order to achieve this, this report introduces a four-phase approach to cyber risk management for port operators, which follows common risk management principles and is mapped to the steps of the risk assessment methodology that is laid out in the ISPS Code and relevant EU legislation for Port and Port Facility Security. For each of these phases, this report provides actionable guidelines to assist port operators in their efforts, lists common challenges associated with the performance of the relevant activities, good practices that can be readily adopted and customised by individual organisations and a mapping of the listed good practices for each phase with the respective challenges they address.
Located in
Publications
-
More than 100 experts attend the joint NSA-ENISA Cybersecurity workshop in Bratislava
-
ENISA and the National Security Authority of Slovakia organized a cybersecurity workshop, with the goal of bringing together cybersecurity experts working in critical sectors like energy and finance, experts from CSIRTs and experts working at the national authorities with supervision tasks under the NIS Directive.
Located in
News
/
ENISA News
-
NIS directive
-
Located in
Topics
/
Critical Infrastructures and Services
/
Critical Information Infrastructures
-
NIS Investments Report
-
Four years after the NIS Directive entered into force and two years after the transposition by Member States into their national laws, this report presents the findings of a survey of 251 organisations across five EU Member States (France, Germany, Italy, Spain and Poland) with regards to NIS investments. The report depicts and analyses how OES and DSPs spend their information security budget and provides indications as to how this spending has been influenced by the introduction of the NIS Directive. The results of this NIS survey were correlated with Gartner security data and insights observed globally and in the EU in order to better understand the current NIS Directive adoption dynamics and impact on related investments.
Located in
Publications
-
NIS Directive has Positive Effect, though Study Finds Gaps in Cybersecurity Investment Exist
-
New ENISA study examining cybersecurity spending states that 82% of Operators of Essential Services and Digital Services Providers find that the NIS Directive has a positive effect. However, gaps in investment still exist. When comparing organisations from the EU to those from the United States, data shows that EU organisations allocate on average 41% less to cybersecurity than their US counterparts.
Located in
News
/
ENISA News
-
NIS Cooperation group and knowledge building meetings concluded in Athens
-
This week ENISA, the European Union Agency for Cybersecurity, hosted two NIS Cooperation Group (CG) meetings in Athens and two knowledge-building days for experts working at competent authorities under the NIS (Security of Network and Information Systems) Directive.
Located in
News
/
ENISA News