The Executive Director

The Executive Director is responsible for managing the Agency and performs his/her duties independently.
Mr. Juhan Lepassaar,Executive Director of the European Union Agency for Cybersecurity

Mr. Juhan Lepassaar

Executive Director of the European Union Agency for Cybersecurity

Mr. Lepassaar took up his functions on 16 October 2019. He has more than 15 years of experience in working with and within the European Union. Prior to joining ENISA, he worked for six years in the European Commission, including as Head of Cabinet of Vice-President Andrus Ansip responsible for the Digital Single Market. In this capacity he also led and coordinated the preparations and negotiations of the Cybersecurity Act.

Mr Lepassaar started his career in the EU affairs with the Estonian Government Office, leading for five years the national EU coordination system as the Director for EU affairs and EU adviser of the Prime Minister.

Senior Leadership

Hans de Vries

Hans de Vries, former ENISA Management Board member joined ENISA as of 1 April 2024 in the role of the ‘Chief Cybersecurity and Operations Officer’ (COO). Hans is mainly assessing operational activities and strategically advising the ENISA Executive Director. Hans engages in outreach and public speaking engagements representing the agency across operational communities. Hans has also strong interpersonal and communication skills gained throughout his career that serves him well in his new role. Prior to this role, Hans was former director of the Dutch National Cyber Security Centre (NCSC) for almost a decade, and was one of the main organisational forces behind the Hague’s ‘ONE Conference’, which is among Europe's prime cybersecurity events. 

Hans’s prior working experience includes top management positions at the Dutch central government and more specifically at the Ministry of the Interior and Kingdom Relations (BZK) where he served as Head of the ‘ICT Management Division’ and Head of ‘Operational Management Coordination’. He has also extended working experience in the ICT security domain at an inter-ministerial and international level. Hans has a Law degree from Leiden University in the Netherlands and began his professional career in the private sector, before working for the Dutch central government in 2002

Florian Pennings

Florian Pennings joined the European Union Agency (ENISA), in September 2024 as Associate Chief Cybersecurity and Operational Officer (COO) to help the Agency achieve further impact, further develop its network, and assist in the implementation of the Single Programming Document focusing actively on its stakeholders within the existing statutory bodies such as the ECCG, SCCG and ECCC Governance Board.

Before joining the Agency, he worked as Director for EU Cybersecurity Policy at Microsoft, in national and European government cyber and security agencies. He strategically coordinates impactful cooperation between industry and public stakeholders, supports the Agency concerning its public engagement and communication, and coordinates the Agency’s activities regarding the new mandate.