Search

By Topics

By Type

Published on

Incident notification for DSPs in the context of the NIS Directive

Publications

This report provides preliminary guidelines on how incident notification provisions for Digital Service Providers could be effectively implemented across the EU. Based on valuable input from Member States and companies directly impacted by the…
Private Sector

Stock taking of information security training needs in critical sectors

Publications

The primary objective of this project is to provide a mapping of ENISA’s training program and a strategy to adapt it in the light of the recently adopted EU NIS Directive, catering for the needs of the identified critical sectors.

Private Sector
Publication cover for Handbook for Cyber Stress Tests - Skyline image with different metrics visual

Handbook for Cyber Stress Tests

Publications

ENISA developed this handbook as guidance for national or sectorial authorities overseeing cybersecurity and resilience of critical sectors, at the national level, regional or EU level under NIS 2…

Private Sector

Demand Side of Cyber Insurance in the EU

Publications

The report analyses current perspectives and challenges of Operator of Essential Services (OESs) related to the acquirement of cyber insurance services. Information and statistics are presented according to the selection, acquisition and use of…
National / EU authorities, Private Sector

Good practices on interdependencies between OES and DSPs

Publications

This study is concerned with dependencies and interdependencies among Operators of Essential Services (OES) and Digital Service Providers (DSPs) as defined in the NIS Directive and addresses emerging dependencies and interdependencies across sectors…
National / EU authorities, Private Sector

Report on Cyber Security Information Sharing in the Energy Sector

Publications

The purpose of this report is to understand and learn the development of CSIRTs, ISACs, as well as relevant initiatives on information sharing on cyber security incidents in the energy sector by focusing on the subsectors identified in the NIS…
Private Sector

Guidelines on assessing DSP security and OES compliance with the NISD security requirements

Publications

This report presents the steps of an information security audit process for the OES compliance, as well as of a self-assessment/ management framework for the DSP security against the security requirements set by the NIS Directive. In addition, it…
National / EU authorities, Private Sector
New National Cybersecurity Strategies map - visual with futuristic background

National Cybersecurity Strategies: What’s new in the EU’s national cybersecurity policymaking

News

The European Union Agency for Cybersecurity (ENISA) unveils the update of the National Cybersecurity Strategies (NCSS) Interactive Map, a dynamic digital platform and tool offering an overview of EU-wide national cybersecurity strategies.

National / EU authorities

Railway Cybersecurity

Publications

This ENISA study regards the level of implementation of cybersecurity measures in the railway sector, within the context of the enforcement of the NIS Directive in each European Member State. It presents a thorough list of essential railway…
Private Sector
ENISA_technical_guidance_for_the_cybersecurity_measures_of_the_NIS2_Implementing_Act.jpeg

Asking for your feedback: ENISA technical guidance for the cybersecurity measures of the NIS2 Implementing Act

News

We are inviting industry stakeholders to provide comments on the technical guidance for the NIS2 implementing act on cybersecurity measures for critical entities in the digital infrastructure sector.

Private Sector