ENISA
https://www.enisa.europa.eu
Smart Airports: How to protect airport passengers from cyber disruptions
https://www.enisa.europa.eu/news/enisa-news/smart-airports-how-to-protect-airport-passengers-from-cyber-disruptions
ENISA publishes a study on "Securing smart airports" providing airport decision makers and security personnel a concrete guide on preventing cyber-attacks and disruptions. No publishercybersecuritySmart CitiesRisk Management2016/12/16 16:50:00 GMT+2Press ReleaseApproaches for SMEs
https://www.enisa.europa.eu/topics/risk-management/approaches-for-smes
No publisherRisk Management2016/03/11 11:32:51 GMT+2FolderApproaches for SMEs
https://www.enisa.europa.eu/topics/risk-management/approaches-for-smes/approaches-for-smes
No publisherRisk Management2016/03/11 11:32:51 GMT+2PageSelf Assessed Risk Management (SARM)
https://www.enisa.europa.eu/topics/risk-management/approaches-for-smes/self-assessed-risk-management-sarm
No publisherRisk Management2016/03/10 16:25:00 GMT+2PageEmerging and Future Risks
https://www.enisa.europa.eu/topics/risk-management/emerging-and-future-risk/emerging-and-future-risks
No publisherRisk Management2016/03/10 16:05:00 GMT+2PageEmerging and Future Risks
https://www.enisa.europa.eu/topics/risk-management/emerging-and-future-risk
Folder contains our work in the area of identification of emerging and future risks.No publisherRisk ManagementInternet of thingsIdentity & TrustPrivacy2016/03/10 16:04:44 GMT+2FolderInventory of Risk Management / Risk Assessment Tools
https://www.enisa.europa.eu/topics/risk-management/current-risk/risk-management-inventory/rm-ra-tools/inventory-of-risk-management-risk-assessment-tools-1
ENISA has generated an inventory of Risk Management / Risk Assessment tools. A total of 12 tools have been considered. Similarly to the inventory of methods, each tool in the inventory has been described through a template. The template used consists of 22 attributes that describe characteristics of tools.No publisherRisk Management2015/05/25 16:21:00 GMT+2CollectionInventory of Risk Management / Risk Assessment Methods
https://www.enisa.europa.eu/topics/risk-management/current-risk/risk-management-inventory/rm-ra-methods/inventory-of-risk-management-risk-assessment-methods-1
No publisherRisk Management2015/05/25 15:55:00 GMT+2CollectionMeeting of Central European Cyber Security Platform 2014
https://www.enisa.europa.eu/news/enisa-news/central-european-cyber-security-platform-2014
…on the first anniversary the 3rd meeting is held in ViennaNo publisherRisk Managementcybersecurity2014/04/10 18:20:00 GMT+2News ItemWCK
https://www.enisa.europa.eu/topics/risk-management/current-risk/risk-management-inventory/rm-ra-tools/t_wck.html
No publisherRisk Management2014/01/08 18:15:00 GMT+2PageTRICK Service
https://www.enisa.europa.eu/topics/risk-management/current-risk/risk-management-inventory/rm-ra-tools/t_trick_service.html
No publisherRisk Management2014/01/08 18:15:00 GMT+2PageCloudeAssurance
https://www.enisa.europa.eu/topics/risk-management/current-risk/risk-management-inventory/rm-ra-tools/t_cloudeassurance.html
No publisherRisk Management2014/01/08 18:15:00 GMT+2PageNational-level Risk Assessments: An Analysis Report
https://www.enisa.europa.eu/publications/nlra-analysis-report
This report is based on a study and analysis of approaches to national-level risk assessment and threat modelling for cyber security which was conducted between April and October 2013. ENISA aims to provide an evidence-based methodology for establishing a National-level Risk Assessment in order to contribute to the wider objective of improving national contingency planning practices (NCPs) . This report will help towards rationalising national risk assessments in EU Member States in order to reduce or eliminate vulnerabilities of critical Information and Communication Technology (ICT) services and infrastructures. In conclusion we can see that understanding of the national approach to cyber security and how risk decisions are taken in different countries is important to ensure that the results of any National-level Risk Assessment reach key decision-makers at the right time. It is also clear that there are a variety of approaches and levels of sophistication used in National-level Risk Assessments. Qualitative tools appeared to be preferred due to the complexities of understanding risk in the cyber domain. Depending on the preconditions regarding implementation, risk assessment could be performed using a common set of methods or in a more decentralised fashion. Challenges included the diversity of methodologies and approaches to National-level Risk Assessments (which highlights the need for this guidance document) as well as the complexities of public–private cooperation. As might be expected, many countries studied drew lessons from others when preparing their National-level Risk Assessment programmes. Some countries had identified priorities that they were seeking to focus on, including greater understanding of threats, improved stakeholder engagement and better national CIIP frameworks. Based on an analysis of the data gathered we recommend the following: 1. Member States should understand better the underlying cyber threats and risks that they face and the impact to society. 2. Member States are advised to integrate National-level Risk Assessment into the lifecycle of NIS incident management and cooperation plans and procedures. 3. Member States should expand public–private sector dialogue and information sharing. 4. A practical step-by-step guide on how to perform National-level Risk Assessments should be developed, tested and maintained. Such a guide should be piloted by countries at the early stages of preparing their own National-level Risk Assessment programme. ENISA or another international institution would be appropriate bodies to oversee this action. 5. A catalogue of scenarios to help Member States in their National-level Risk Assessments should be established at EU level. Such a catalogue could be based on work already being done at ENISA on the threat landscape and incident reporting . 6. The EU community of practitioners with an interest in cyber National-level Risk Assessments should be established and strengthened as information exchange platform, e.g., within the framework of the European Commission’s NIS Platform . 7. Risk analysis expertise must be shared from other domains that assess complex cross-border risks, such as border security, financial services, aviation or public health for example within the European Commission’s NIS Platform and other activities organised by ENISA. No publisherCrisis ManagementRisk Management2013/11/19 14:25:00 GMT+2Report/Study2nd ENISA Cloud Security and Resilience Experts Group meeting
https://www.enisa.europa.eu/news/enisa-news/2nd-enisa-cloud-security-and-resilience-experts-group-meeting
Yesterday, 15th October 2013, the ENISA Cloud Security and Resilience Experts group met for the second time, in Rome.No publisherRisk ManagementcybersecurityCloud Computing Security2013/10/16 13:20:00 GMT+2News ItemTRICK light
https://www.enisa.europa.eu/topics/risk-management/current-risk/risk-management-inventory/rm-ra-tools/trick-light
No publisherRisk Management2013/05/29 12:55:00 GMT+2Page