Search

The purpose of this report is to present a comprehensive methodology for identifying and analysing technology signals relevant to the cybersecurity landscape. It outlines the key stages of the process and explains how these variables can be…

This report represents an updated version of ENISA's national capabilities assessment framework (NCAF).  The framework aims to help Member States undertake a self-assessment of their level of maturity by assessing their National…

Today, four organisations have newly joined the Common Vulnerabilities and Exposures (CVE™) Program as CVE Numbering Authorities (CNAs) under ENISA Root. These organisations were all trained and onboarded by ENISA.

ENISA-TA-AST6-2026-05

ENISA's Cybersecurity Market Analysis Framework (ECSMAF)  is a guide on how to conduct market analysis, including recurrent market analysis and continuous market monitoring, in the field of cybersecurity. This new version (Version 3.0)…

This document focuses on how developers can securely use package managers as part of their software development life cycle. In particular, this document, outlines common risks involved in the use of third-party packages, presents secure practices…

The methodology offers an end-to-end theoretical framework for planning, running and evaluating cybersecurity exercises. It ensures the right profiles and stakeholders are involved at the right time. It provides theoretical material based on…

The ENISA International Strategy sets out how the Agency works with international partners to strengthen cybersecurity across the European Union.
 

ENISA-TA-AD12-2026-08

The ENISA Stakeholder Strategy sets out ENISA’s approach to identifying and engaging stakeholders in a value-driven, coordinated, and transparent way. It establishes common principles and governance for stakeholder engagement, aligned with ENISA’…