ENISA
https://www.enisa.europa.eu
CERT Operational Gaps and Overlaps
https://www.enisa.europa.eu/publications/operational-gaps-overlaps
This document analyses the operational gaps and overlaps of national/governmental CERTs and provides some reccomendations. Recommendations made in this report represent the results of the analysis of input gathered from the relevant external stakeholders (European CERTs) and give additional ideas for ENISA experts to consider when planning future ENISA activities. No publisherCSIRTsCSIRTs2011/12/20 15:00:00 GMT+2Report/StudySecure Communication with the CERTs & Other Stakeholders
https://www.enisa.europa.eu/publications/secure-communication
The main objective of the project “Secure Communications with the CERTs and other Stakeholders”, which is one of the ENISA activities related to reinforcing communications between CERTs in the Member States, is the preparation work for a report on secure communication channel(s) with the CERTs and other stakeholders and a roadmap for implementation and future development. THIS CONCISE REPORT AIMS AT PROVIDING AN OUTLINE OF THE RESULTS OF THIS PROJECT.No publisherCSIRTs2011/12/22 13:00:00 GMT+2Report/StudyEISAS Roadmap
https://www.enisa.europa.eu/publications/eisas_roadmap
The EISAS Roadmap provide the direction to further the development and deployment of the European Information Sharing and Alert System (EISAS). It has been produced by ENISA upon request of the EU Commission as communicated in the Communication on Critical Information Infrastructure Protection - COM (2009)149.No publisherCSIRTsCSIRTs2011/02/16 15:40:00 GMT+2Report/StudyEISAS Basic toolset
https://www.enisa.europa.eu/publications/eisas-basic-toolset
This study describes how EU Member States can deploy the European Information Sharing and Alert System (EISAS) framework for its target group comprised of citizens and small & medium enterprises (SMEs). The report highlights the way to reach citizens with IS awareness by targeting them at work, and also using the UK concept of information sharing communities (WARPs) to reach SMEs as a way forward.No publisherOnline SafetySMEsTrainingsCSIRTsNetwork and Information Security AwarenessCSIRTs2011/12/14 14:30:00 GMT+2Report/StudyEISAS (enhanced) report on implementation
https://www.enisa.europa.eu/publications/eisas-report-on-implementation-enhanced
The 'EISAS (enhanced) report is an implementation plan for further development and deployment of EISAS concept. It's a 'how-to' method for implementing a fully functional EISAS framework until 2013 in the European Union Member States.No publisherOnline SafetySMEsTrainingsCSIRTsNetwork and Information Security AwarenessCSIRTs2011/12/14 14:35:00 GMT+2Report/StudyEISAS Large-Scale Pilot - Collaborative Awareness Raising for EU Citizens & SMEs
https://www.enisa.europa.eu/publications/eisas-large-scale-pilot
To continually raise the level of cyber security awareness of all citizens and businesses, the European Commission decided to promote a collaborative approach for awareness raising in Europe. Introduced in 2006, EISAS, the European Information Sharing and Alert System, aims to enhance the cooperation of Member States in their work to reach out to citizens and SMEs with relevant security information. In 2012 ENISA has run a Large Scale Pilot project. The EISAS Large Scale Pilot Report, details its successful actions, and identifies the cost-effectiveness of European awareness raising collaboration, while the EISAS Updated Roadmap foresee future actions for EISAS.No publisherOnline SafetySMEsGood PracticeCSIRTs2012/12/13 10:00:00 GMT+2Report/StudyEISAS - Enhanced Roadmap 2012
https://www.enisa.europa.eu/publications/eisas-enhanced-roadmap-2012
The EISAS Enhanced Roadmap 2012 take account of the results of the EISAS Large scale pilot and foresee the next steps required for a full deployment of EISAS in the EU. No publisherSMEsTrainingsNetwork and Information Security AwarenessGood PracticeCSIRTs2012/12/13 10:00:00 GMT+2Report/StudyEISAS Deployment feasibility study
https://www.enisa.europa.eu/publications/eisas-deployment-feasibility-study
EISAS – European Information Sharing and Alerting – has proven to be a great opportunity to enhance collaboration and foster awareness-raising actions across Europe. ENISA helped design EISAS, but now EISAS has to run by itself. The deployment plan presented in this document defines an information sharing concept and infrastructure and an accompanying organisational structure, where ENISA can support the Member States involved, but not drive the initiative. No publisherCSIRTsNetwork and Information Security Awareness2013/12/09 17:05:00 GMT+2Report/StudyENISA’s CSIRT-related capacity building activities
https://www.enisa.europa.eu/publications/leading-the-way-enisa-s-impact-in-operational-security
This report represents the update of an impact assessment of ENISA’s support to CSIRTs in 2014. This updated assessment serves as a basis for a proposed roadmap to 2020. The impact of the ENISA support to the CSIRT community was assessed from a dual perspective - legislative and regulatory, as well as operational, with the key objectives to: Update the policy analysis; Gather additional input from practitioners, including specific input on the new duties; Together with ENISA, propose concrete projects or actions towards the roadmap implementation. No publisherCSIRTs2015/11/12 09:20:00 GMT+2Report/StudyActionable information for security incident response
https://www.enisa.europa.eu/publications/actionable-information-for-security
This document is intended as a good practice guide for the exchange and processing of actionable information. The report is relevant to incident response in all types of organizations, the primary audience of this study isnational and governmental CERTs. The scope of the study is purposefully broad.No publisherCSIRTsCSIRTs2015/01/19 02:05:00 GMT+2Report/StudyStandards and tools for exchange and processing of actionable information
https://www.enisa.europa.eu/publications/standards-and-tools-for-exchange-and-processing-of-actionable-information
This document has been created as part of an ENISA-funded study of the state of security information sharing and is intended to supplement the main report, “Actionable Information for Security Incident Response.” The purpose of this document is to give the target audience of this study - national and governmental CERTs - a better understanding of the standards and tools for processing actionable information that can be applied to their information-sharing missions.No publisherCSIRTsCSIRTs2015/01/19 02:05:00 GMT+2Report/StudyAlerts-Warnings-Announcements
https://www.enisa.europa.eu/publications/awa
This guide complements the existing set of ENISA guides that support Computer Emergency Response Teams (CERTs, also known as CSIRTs). It describes good practices and provides practical information and guidelines for the process of preparing and issuing alerts, warnings and announcements to a CERT’s constituency. The main focus area of the guide is the process of informing the CERTs and their constituencies about threats and ways to contain threats – a core service carried out by most CERTs – which involves having an identified and reliable set of information sources and a well structured process of assessing and processing the incoming information, enabling the CERT to get the right information at the right places in the most timely fashion.No publisherCSIRTsCSIRTs2013/11/26 16:55:00 GMT+2Report/StudyCSIRT Capabilities. How to assess maturity? Guidelines for national and governmental CSIRTs
https://www.enisa.europa.eu/publications/csirt-capabilities
This report focuses on the maturity of national and governmental Computer Security and Incident Response Teams (CSIRTs) and the Trusted Introducer1 certification scheme for CSIRTs as an indicator of the maturity level of teams. The issues covered are described from two points of view: the perspective of the team that is preparing for the certification process on the one hand and of teams that have already undergone certification and even recertification on the other. The aim of this document is to be a guiding tool for those national and governmental CSIRTs which are considering reaching the next level of maturity and good understanding of their capabilities.No publisherCSIRTs2016/01/11 00:00:00 GMT+2Report/StudyGood practice guide for CERTs in the area of Industrial Control Systems - Computer Emergency Response Capabilities considerations for ICS
https://www.enisa.europa.eu/publications/good-practice-guide-for-certs-in-the-area-of-industrial-control-systems
This document builds upon the current practice of CSIRTs with responsibilities for ICS networks, and also on the earlier work of ENISA on a baseline capabilities scheme for national/ governmental (n/g) CSIRTs. The document is an initial attempt to provide a good practice guide for the entities that have been tasked to provide ICS Computer Emergency Response Capabilities (ICS-CERC). On the other hand, this guide does not have the ambition to prescribe to the EU Member States which entities should be entrusted with provision of ICS-CERC services. No publisherCSIRTsCSIRTs2013/12/04 02:05:00 GMT+2Report/StudyCERT community - Recognition mechanisms and schemes
https://www.enisa.europa.eu/publications/cert-community-recognition-mechanisms-and-schemes
This document provides an overview of existing mechanisms supporting Computer Emergency Response Teams (CERTs) to deploy capabilities necessary for their operations and their maturity level. It introduces these mechanisms according to the CERT maturity levels that they address based on eight predefined criteria including requirements that CERTs must meet; CERTs’ focus: type or region; and definitions and terminology used.No publisherCSIRTs2013/12/12 00:00:00 GMT+2Report/Study