Search results

149 items matching your search terms.
Filter the results.
Item type


































































New items since



Sort by relevance · date (newest first) · alphabetically
Report/Study Standardisation in support of the Cybersecurity Certification
The document presents the value of the cybersecurity standardisation efforts for certification, the roles and responsibilities of Standards Developing Organisations (SDOs) in this context, and discusses various ways how standardisation can support efficiently the process of certification schemes creation by following a step by step methodology. The methodology described in this study can be used as guidelines for new certification schemes or standards authors. It will help setting up KPIs, useful for all stakeholders involved in the preparation or operational phase of a certification scheme. The qualification system proposed can be used also to define more precisely the requirements associated with the different assurance levels mentioned in article 52 of the Cybersecurity Act. With regard to standardisation activities, the study proposes a set of recommendations for the Standards Developing Organisations and the prospective authors of certification schemes.
Located in Publications
Report/Study Roadmap on the cooperation between CSIRTS and LE
The purpose of this roadmap is to further explore the cooperation across computer security incident response teams (CSIRTs) in particular with national and governmental - law enforcement (LE) and the Judiciary (prosecutors and judges). This roadmap aims to support the cooperation between CSIRTs and LE, as well as their interaction with the Judiciary in their fight against cybercrime, by providing information on the organisational, legal, technical and cultural cooperation aspects and by identifying current shortcomings and making recommendations to further enhance cooperation. The geographical coverage of this roadmap is mainly the EU and European Free Trade Association (EFTA).
Located in Publications
Report/Study C++ source code Guideline on Security Measures under the EECC
This document, the Technical Guideline for Security Measures, provides guidance to competent authorities about the technical details of implementing Articles 40 and 41 of the EECC: how to ensure that providers assess risks and take appropriate security measures. The guideline lists 29 high-level security objectives, which are grouped in 8 security domains. For each security objective we list specific detailed security measures which could be taken by providers to reach the security objective. These security measures are grouped in 3 levels of increasing sophistication. We also give examples of evidence, which could be taken into account by an auditor, for example, when assessing if these security measures are actually in place.
Located in Publications
ENISA Report Highlights Resilience of Telecom Sector in Facing the Pandemic
ENISA is releasing its ‘Telecom Security During a Pandemic’ report at the 32nd meeting of EU telecom security authorities. Underlining the current strength of the sector in the face of the pandemic, the report also calls for increased cooperation, as telecommunications become more and more essential for Europe’s society and economy.
Located in News / ENISA News
ENISA and eu-LISA – Cooperation for a More Digitally Resilient Europe
ENISA and eu-LISA sign Cooperation Plan to share knowledge, information and expertise.
Located in News / ENISA News
Report/Study Troff document EU Member States incident response development status report
Following the recent transposition of the NIS Directive1 (NISD) into European Member States (MS) legislation, this study aims to analyse the current operational Incident Response set-up within NISD sectors2 and identify the recent changes. The study provides a deeper insight into NISD sectoral Incident Response capabilities, procedures, processes and tools to identify the trends and possible gaps and overlaps. Incident Response Capabilities (IRC) within NISD sectors is a growing concern to tackle potential incidents which could have a major impact on European societies and citizens. To
Located in Publications
Cybersecurity certification: lifting the EU into the cloud
A candidate cybersecurity certification scheme for cloud services is in the works by ENISA, the European Union Agency for Cybersecurity.
Located in News / ENISA News
Report/Study CSS stylesheet Good practices in innovation on cybersecurity under the NCSS
This report supports that effort by analysing how Member States are approaching innovation as a strategic priority under National Cyber Security Strategies (NCSS). The analysis is structured around several aspects of innovation: Innovation Priorities, Industrialisation and Collaboration and Market and Policy; identifying challenges and good practices for each dimension. Seven recommendations has been provided to support the development of cybersecurity innovation strategies.
Located in Publications
Report/Study ECMAScript program Procurement Guidelines for Cybersecurity in Hospitals
As cybersecurity becomes more of a priority for hospitals, it is essential that it is integrated holistically in the different processes, components and stages influencing the healthcare ICT ecosystem. Procurement is a key process shaping the ICT environment of modern hospitals and, as such, should be at the forefront when it comes to meeting cybersecurity objectives. This report offers cybersecurity guidelines for Hospitals when procuring services, products and infrastructure. All good practices are linked to types of procurement for which they are relevant and to threats which they can mitigate, providing an easy to filter set of practices for hospitals who want to focus on particular aspects.
Located in Publications

We use cookies on our website to support technical features that enhance your user experience.
We also use analytics. To opt-out from analytics, click for more information.

I've read it More information