The European Standardisation Organisations (ESOs) CEN, CENELEC, ETSI, together with ENISA, the EU Agency for Cybersecurity, successfully co-hosted the 9th Cybersecurity Standardisation Conference on 20 March 2025 in Brussels.
Risky business or a leap of faith? A risk based approach to optimise cybersecurity certification
The European Union Agency for Cybersecurity (ENISA) launches a cybersecurity assessment methodology for cybersecurity certification of sectoral multistakeholder ICT systems.
How to achieve the Interoperability of EU Risk Management Frameworks
The European Union Agency for Cybersecurity (ENISA) issues an analysis of the interoperability potential of cybersecurity risk management frameworks and methodologies to improve decision-making.
How critical is a critical information infrastructure?
ENISA issues methodologies for the identification of Critical Information Infrastructure (CII) services in communication networks.
Supporting the fight against cybercrime: ENISA reports on CSIRTs and law enforcement cooperation
ENISA publishes today two reports on “Tools and Methodologies to Support Cooperation between CSIRTs and law enforcement” and “Improving Cooperation between CSIRTs and law enforcement: Legal and Organisational Aspects”.
CSIRT Maturity Framework
This section gives recommendations for CSIRTs on how to improve, mature and be better prepared to protect their constituencies.
Asking for your feedback: ENISA technical guidance for the cybersecurity measures of the NIS2 Implementing Act
We are inviting industry stakeholders to provide comments on the technical guidance for the NIS2 implementing act on cybersecurity measures for critical entities in the digital infrastructure sector.
Ransomware: Publicly Reported Incidents are only the tip of the iceberg
The threat landscape report on ransomware attacks published today by the European Union Agency for Cybersecurity (ENISA) uncovers the shortcomings of the current reporting mechanisms across the EU.