A good practice guide of using taxonomies in incident prevention and detection

Back to all publications

Download

Publication date:January 30, 2017

The aim of this document is to provide good practices on using taxonomies for incident detection and prevention by taking into account the input received from the CSIRT community and relevant information from previous ENISA studies. In addition, it provides conclusions and recommendations on improvements that can be made on current taxonomies.

Search related content with: CSIRTs

Publication details

Related content

Best_Practices_for_Cyber_Crisis_Management.png

Best Practices for Cyber Crisis Management

This study highlights the complexities behind the notion of cyber crisis and the degree of subjectivity it involves.

Cybersecurity Support Action

The ENISA Cybersecurity Support Action provides ex-post and ex-ante services and assistance to Member States' NIS2 Directive entities.

Sustained Activity by Threat Actors- Joint Publication

ENISA, the EU Agency for Cybersecurity, and CERT-EU, the Computer Emergency Response Team of all the EU institutions, bodies and agencies (EUIBAs), have issued a joint publication to alert on sustained activity by particular threat actors.

2021 Report on CSIRT-Law Enforcement Cooperation

The purpose of this report is to further explore and support the cooperation between computer security incident response teams (CSIRTs), in particular national and governmental CSIRTs, and Law enforcement agencies (LEAs) and their interactions with the Ju

BROWSE ALL PUBLICATIONS

23rd CSIRTs Network Meeting

2024 May 22

EU-CyCLONe Executives meeting

2024 May 22

24th CSIRTs Network Meeting

2024 Sep 23

26th CSIRTs Network Meeting

2025 May 12

BROWSE ALL EVENTS

BlueOLEx 2025: Testing the Capabilities of EU Crisis Management Executives

News Item

Driven by the revised Cyber Blueprint released earlier this year and inspired by a real-life scenario, the new edition of BlueOLEx evaluated the executive level of EU cooperation in case of large-scale cybersecurity incidents and crises.

ENISA to operate the EU Cybersecurity Reserve with EUR 36 million

Press Release

The European Union Agency for Cybersecurity (ENISA) and the European Commission signed a contribution agreement, through which the Commission entrusts ENISA with the administration and operation of the EU Cybersecurity Reserve, and provides ENISA with

Joint Statement on SharePoint vulnerabilities - Assessment and advice on recovery and mitigating actions

News Item

The European Commission, the EU Agency for Cybersecurity (ENISA), the Cybersecurity Service for the Union institutions, bodies, offices and agencies (CERT-EU), and the network of the EU CSIRTs, are closely following the

New Cyber Blueprint to Scale Up the EU Cybersecurity Crisis Management

Press Release

The revised Blueprint for cybersecurity crisis management was adopted today by the Council of the EU.

BROWSE ALL NEWS

CSIRTs by Country - Interactive Map

The European CSIRT Inventory gives an overview of the actual situation concerning CSIRT teams in Europe. It provides a list of publicly listed incident response teams that can be visualised by the interactive mapping tool. This tool allows the…

BROWSE ALL TOOLS