Search

By Topics

By Type

Published on

Incident notification for DSPs in the context of the NIS Directive

Publications

This report provides preliminary guidelines on how incident notification provisions for Digital Service Providers could be effectively implemented across the EU. Based on valuable input from Member States and companies directly impacted by the…
Private Sector

Stock taking of information security training needs in critical sectors

Publications

The primary objective of this project is to provide a mapping of ENISA’s training program and a strategy to adapt it in the light of the recently adopted EU NIS Directive, catering for the needs of the identified critical sectors.

Private Sector
Publication cover for Handbook for Cyber Stress Tests - Skyline image with different metrics visual

Handbook for Cyber Stress Tests

Publications

ENISA developed this handbook as guidance for national or sectorial authorities overseeing cybersecurity and resilience of critical sectors, at the national level, regional or EU level under NIS 2…

Private Sector

Demand Side of Cyber Insurance in the EU

Publications

The report analyses current perspectives and challenges of Operator of Essential Services (OESs) related to the acquirement of cyber insurance services. Information and statistics are presented according to the selection, acquisition and use of…
National / EU authorities, Private Sector

Good practices on interdependencies between OES and DSPs

Publications

This study is concerned with dependencies and interdependencies among Operators of Essential Services (OES) and Digital Service Providers (DSPs) as defined in the NIS Directive and addresses emerging dependencies and interdependencies across sectors…
National / EU authorities, Private Sector
European Union Vulnerability Database - promotional image

Consult the European Vulnerability Database to enhance your digital security!

News

The European Union Agency for Cybersecurity (ENISA) has developed the European Vulnerability Database - EUVD as provided for by the NIS2 Directive. The EUVD service, to be maintained by ENISA, is now…

National / EU authorities, Private Sector

Report on Cyber Security Information Sharing in the Energy Sector

Publications

The purpose of this report is to understand and learn the development of CSIRTs, ISACs, as well as relevant initiatives on information sharing on cyber security incidents in the energy sector by focusing on the subsectors identified in the NIS…
Private Sector

Guidelines on assessing DSP security and OES compliance with the NISD security requirements

Publications

This report presents the steps of an information security audit process for the OES compliance, as well as of a self-assessment/ management framework for the DSP security against the security requirements set by the NIS Directive. In addition, it…
National / EU authorities, Private Sector

Railway Cybersecurity

Publications

This ENISA study regards the level of implementation of cybersecurity measures in the railway sector, within the context of the enforcement of the NIS Directive in each European Member State. It presents a thorough list of essential railway…
Private Sector
ENISA_technical_guidance_for_the_cybersecurity_measures_of_the_NIS2_Implementing_Act.jpeg

Asking for your feedback: ENISA technical guidance for the cybersecurity measures of the NIS2 Implementing Act

News

We are inviting industry stakeholders to provide comments on the technical guidance for the NIS2 implementing act on cybersecurity measures for critical entities in the digital infrastructure sector.

Private Sector