ENISA
https://www.enisa.europa.eu
Recommendations for technical implementation of the eIDAS Regulation
https://www.enisa.europa.eu/publications/towards-a-harmonised-conformity-assessment-scheme-for-qtsp-qts
The present report aims to propose ways in which the eIDAS assessment regime can be strengthened based on the current regime of the eIDAS Regulation, the stakeholders’ concerns and the legitimate need to move towards a more harmonised approach with regards to the assessment by CABs of the conformity of QTSP/QTSs with the requirements of that Regulation. It focuses in particular on actions towards a harmonised conformity assessment scheme for QTSP/QTS.No publisherCybersecurityeIDAS2020/04/14 13:30:00 GMT+2Report/StudyRailway Cybersecurity - Good Practices in Cyber Risk Management
https://www.enisa.europa.eu/publications/railway-cybersecurity-good-practices-in-cyber-risk-management
This report aims to be a reference point for current good practices for cyber risk management approaches that are applicable to the railway sector. It offers a guide for railway undertakings and infrastructure managers to select, combine or adjust cyber risk management methods to the needs of their organisation. It builds upon the 2020 ENISA report on cybersecurity in the railway sector (ENISA, 2020), which assessed the level of implementation of cybersecurity measures in the railway sector. This report provides actionable guidelines, lists common challenges associated with the performance of the relevant activities, and outlines good practices that can be readily adopted and tailored by individual organisations. Additionally, a list of useful reference material is available, together with practical examples and applicable standards.No publisherRailwayCybersecurity2021/11/25 11:00:00 GMT+2Report/StudyRailway Cybersecurity
https://www.enisa.europa.eu/publications/railway-cybersecurity
This ENISA study regards the level of implementation of cybersecurity measures in the railway sector, within the context of the enforcement of the NIS Directive in each European Member State. It presents a thorough list of essential railway services accompanied by a high level overview of the railway systems they support. Finally, the European Railway Traffic Management System is presented together with some key cybersecurity considerations and recommendations. No publisherCybersecurityRail2020/11/13 11:00:00 GMT+2Report/StudyProcurement Guidelines for Cybersecurity in Hospitals
https://www.enisa.europa.eu/publications/good-practices-for-the-security-of-healthcare-services
As cybersecurity becomes more of a priority for hospitals, it is essential that it is integrated holistically in the different processes, components and stages influencing the healthcare ICT ecosystem. Procurement is a key process shaping the ICT environment of modern hospitals and, as such, should be at the forefront when it comes to meeting cybersecurity objectives. This report offers cybersecurity guidelines for Hospitals when procuring services, products and infrastructure. All good practices are linked to types of procurement for which they are relevant and to threats which they can mitigate, providing an easy to filter set of practices for hospitals who want to focus on particular aspects.No publisherCybersecurityeHealth Security2021/04/07 12:00:00 GMT+2Report/StudyPrivacy Statement - ECSM Meetings
https://www.enisa.europa.eu/events/ecsm-coordination-meeting-2020/privacy-statement-ecsm-meetings/view
No publisherCybersecurityENISA events2020/02/13 10:00:00 GMT+2FilePrivacy Statement
https://www.enisa.europa.eu/topics/cyber-threats/threats-and-trends/ad-hoc-working-group-cyber-threat-landscapes/privacy-statement/view
No publisherCybersecurity2021/03/05 00:00:00 GMT+2FilePrivacy Statement
https://www.enisa.europa.eu/events/napac-meetings-registrations/14th-plenary-meeting-of-the-napac/privacy-statement/view
No publisherCybersecurity2021/03/09 15:50:25 GMT+2FilePrivacy Statement
https://www.enisa.europa.eu/events/napac-meetings-registrations/16th-plenary-meeting-of-the-napac/privacy-statement/view
No publisherCybersecurity2021/11/30 13:30:00 GMT+2FilePrivacy Statement
https://www.enisa.europa.eu/topics/cybersecurity-education/sme_cybersecurity/ad-hoc-working-group-enterprise-security/privacy-statement/view
No publisherCybersecurity2021/03/22 00:00:00 GMT+2FilePrivacy Statement
https://www.enisa.europa.eu/topics/cybersecurity-education/ad-hoc-working-group-awareness-raising/privacy-statement/view
No publisherCybersecurity2021/03/22 00:00:00 GMT+2FilePrivacy Statement
https://www.enisa.europa.eu/topics/iot-and-smart-infrastructures/artificial_intelligence/ad-hoc-working-group-on-emerging-and-future-cybersecurity-challenges/privacy-statement/view
No publisherCybersecurity2021/02/28 00:00:00 GMT+2FilePrevention is the cyberdefence for hospitals
https://www.enisa.europa.eu/news/enisa-news/prevention-is-the-cyberdefence-for-hospitals
The EU Agency for Cybersecurity publishes a Cybersecurity Procurement Guide for Hospitals. Healthcare IT professionals have a new instrument in their toolbox. No publisherCybersecurityCyber ExerciseseHealth SecurityPermanent Stakeholder Group (PSG)2020/02/24 09:00:00 GMT+2Press ReleasePort Cybersecurity - Good practices for cybersecurity in the maritime sector
https://www.enisa.europa.eu/publications/port-cybersecurity-good-practices-for-cybersecurity-in-the-maritime-sector
Developed in collaboration with several EU ports, this report intends to provide a useful foundation on which CIOs and CISOs of entities involved in the port ecosystem, especially port authorities and terminal operators, can build their cybersecurity strategy. The study lists the main threats posing risks to the port ecosystem and describes key cyber-attack scenarios that could impact them. This approach allowed the identification of security measures that ports shall put in place to better protect themselves from cyberattack. The main measures identified intend to serve as good practices for people responsible for cybersecurity implementation. The study can be useful for other stakeholders in the broader community within the port ecosystem, such shipping companies and maritime policy makers.No publisherCybersecurityENISAPortMaritime2019/11/26 11:30:00 GMT+2Report/StudyOverview of standards related to eIDAS
https://www.enisa.europa.eu/publications/assessment-of-standards-related-to-eidas-i
The scope of this document is to assess the suitability of the recently published ENs to fulfil the eIDAS Regulation requirements, and to describe the differences with the previous TSs, in view of a possible update of the list of standards referenced in the Decisions in force. It also aims at evaluating the consequences of such update and defines the timeline for a possible transition to the exclusive usage of the new ENs.No publisherCybersecurityeIDAS2020/04/14 13:30:00 GMT+2Report/StudyOpen platform and tools to facilitate the collaboration among Computer Security Incident Response Teams
https://www.enisa.europa.eu/news/enisa-news/open-platform-and-tools-to-facilitate-the-collaboration-among-computer-security-incident-response-teams
Collaboration among European Computer Security Incident Response Teams (CSIRTs) has become essential for cyber security operations in Europe. No publisherCybersecurityIncident ResponseCSIRTs2020/01/15 17:15:00 GMT+2News Item