Search

By Topics

By Type

Published on

Interoperable EU Risk Management Framework

Publications

This report proposes a methodology for assessing the potential interoperability of risk management (RM) frameworks and methodologies and presents related results. The methodology used to evaluate interoperability stemmed from extensive research of…
National / EU authorities, Private Sector

Compendium of Risk Management Frameworks with Potential Interoperability

Publications

This report presents the results of desktop research and the analysis of currently used cybersecurity Risk Management (RM) frameworks and methodologies with the potential for interoperability. The identification of the most prominent RM frameworks…
National / EU authorities, Private Sector
Cover page of an ENISA report titled 'Cybersecurity Roles and Skills for NIS2 Essential and Important Entities', featuring a person typing on a laptop with floating digital icons representing cybersecurity roles. The report is dated June 2025 and maps NIS2 obligations to the ECSF.

Cybersecurity roles and skills for NIS2 Essential and Important Entities

Publications

 ENISA in line with articles 6 and 10 of the Cybersecurity Act , prepared this guidance document on the skills and roles for the cybersecurity professionals needed to meet these legal requirements effectively. The guidance is based on the…

National / EU authorities, Private Sector
Visual with a background image of a NIS2-themed book, featuring the ENISA logo and the text: “Turning security measures into clear practical steps. ENISA publishes technical implementation guide.

Supporting NIS2 implementation through actionable guidance

News

The EU Agency for Cybersecurity (ENISA) publishes a technical guideline for the security measures of the NIS2 Implementing Regulation to assist digital infrastructures and managed service providers.

National / EU authorities, Private Sector

Guidelines on assessing DSP security and OES compliance with the NISD security requirements

Publications

This report presents the steps of an information security audit process for the OES compliance, as well as of a self-assessment/ management framework for the DSP security against the security requirements set by the NIS Directive. In addition, it…
National / EU authorities, Private Sector

Demand Side of Cyber Insurance in the EU

Publications

The report analyses current perspectives and challenges of Operator of Essential Services (OESs) related to the acquirement of cyber insurance services. Information and statistics are presented according to the selection, acquisition and use of…
National / EU authorities, Private Sector
ENISA Space Threat Landscape

From Cyber to Outer Space: A Guide to Securing Commercial Satellite Operations

News

The European Union Agency for Cybersecurity (ENISA) explores the cybersecurity threat landscape of space to strengthen the resilience of commercial satellites.

National / EU authorities, Private Sector
Telecom Security Forum 2022

ENISA Telecom Security Forum 2022

Events

On the 29th of June, 09:30 -17:30 CET, ENISA organizes the 2nd Telecom Security Forum in Brussels, Thon Hotel EU. 

Private Sector
Dora becomes binding

EU financial entities cybersecurity upgrade: DORA is now alive and kicking

News

The Digital Operational Resilience Act (DORA) becomes binding as of today for all financial entities across the EU.

Private Sector
EU Action Plan to protect the health sector from cyberattacks

Proposed ENISA role to safeguard cybersecurity of health sector

News

The EU Agency for Cybersecurity, ENISA welcomes the EU Action Plan for the cybersecurity of hospitals and healthcare providers proposed on 15 January.

Private Sector