European Union Agency for Network and Information Security

ENISA launches the CaRSEC Expert Group – Apply now

Mon, 02/01/2016 - 08:00

ENISA launches this Call for Participation to invite experts in security of Smart Cars and Intelligent Road Systems to participate to its expert group.

The creation of the ENISA Cars and Roads SECurity (CaRSEC) Expert Group aims at gathering experts in the domains of Smart Cars and Intelligent Road Systems to exchange on cyber security threats, challenges and solutions with the objective to protect the safety of citizens.

Experts that could apply to the CaRSEC group:

  • Car manufacturing with a focus on cyber security,
  • Suppliers and developers of vehicular hardware and/or software with a focus on cyber security,
  • Associations and not-for-profit organisations involved in cars security,
  • Road authorities, academia, standardisation bodies and policy makers.


Read the terms of reference
and share with your network!

Apply here: Application form

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Interested in testing your cybersecurity capabilities? Join Cyber Europe 2016

Mon, 02/01/2016 - 07:00

Cyber Europe 2016, the next European cyber crisis exercise, is under preparation. For European public and private organizations eager to test their cybersecurity capabilities it is the one event in 2016 not to be missed.

More information is available online: https://www.cyber-europe.eu

To gain some insight into the Cyber Europe exercises have a look at the After Action Report of the previous pan-European cybersecurity exercise Cyber Europe 2014 .

For media and press enquiries please contact press@enisa.europa.eu , Tel. +30 2814 409576

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

JRC Members visit ENISA

Fri, 01/29/2016 - 16:09

On Monday the 22nd of January, the Technology Assessment Unit (STA) from the Institute for the Protection and Security of the Citizen (IPSC) Security of the Joint Research Centre (JRC), visited the ENISA premises in Athens.

The objective of the meeting was to exchange experiences with ENISA’s Secure Infrastructure and Services Unit, discuss technical topics and create synergies on common working areas.

In more details, the meeting focused on discussions, exchange of experiences and future collaboration on common topics of interest:

  • IACS (Industrial Automation Systems) security and certification,
  • eHealth,
  • Smart infrastructures and
  • IPSC’s tools to secure businesses and the society.

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA - CEER 1st Workshop

Thu, 01/28/2016 - 16:00

Participants from the European Commission Directorate General for Energy, the Agency for the Cooperation of Energy Regulators (ACER), as well as representatives from Austria, Hungary, Greece, Italy, Slovenia,  Ireland and the Netherlands were also present and discussed the status of cyber-security in the energy sector, future steps and collaboration. Among other things:

  • The European Energy Cyber Security Platform (EECSP),
  • ENISA’s activities regarding security in the energy sector,
  • The NIS Directive and
  • The information sharing initiatives were presented and further discussed.


The Agency and the expert group agreed to collaborate and participate in information security activities of common interest.

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Adopt PETs on data protection day!

Wed, 01/27/2016 - 22:05

On 28th January 2016, the European Union Agency for Network and Information Security (ENISA) joins the 47 countries of the Council of Europe and the EU institutions, agencies and bodies to celebrate the 10th annual European Data Protection Day. This date marks the anniversary of the Council of Europe's Convention 108 on the protection of personal information, the first legally binding international law in the field of data protection.

Time to adopt PETs

On this occasion, ENISA takes the opportunity to share some of its work in the field of data protection and privacy, in particular relating to privacy enhancing technologies (PETs).

The agency with its new poster ‘Time to adopt PETs’ promotes awareness and the uptake of PETs by internet and mobile users following the simple approach ‘reduce, protect, detect’. PETs refer to technologies/tools that can support users in safeguarding their privacy and personal data, especially when using online applications and services. Examples of PETs include tools that can offer protection against online tracking, as well as tools providing encryption and secure messaging functionality.

A strengthened legal regime for the protection of personal data

Furthermore, ENISA welcomes the new General Data Protection Regulation modernising the current legal framework, especially in relation to the processing of personal data in the digital era. This development is an important step forward for enhancing privacy protection of EU citizens and for promoting privacy and security as core aspects of the European industry. ENISA’s work in the field comprises in translating legal obligations into technical solutions, in particular with regard to the security of personal data, privacy and data protection by design and PETs, personal data breach notifications, as well as mechanisms for user empowerment (transparency and control) in digital environments.

 

Relevant studies available online by ENISA:

  • Privacy and data protection by design
    The report contributes to bridging the gap between the legal framework and the available technological implementation measures by providing an inventory of existing approaches, privacy design strategies, and technical building blocks of various degrees of maturity from research and development.

       The report identifies the gaps between available training courses, certifications and NIS education needs (with particular 
       emphasis on online privacy) and proposes further actions in the field.

      The report focuses on the current status in cryptographic protocols and encourages further work by researchers and organisations in
       the field.

     The study is a reference document providing a set of guidelines to decision makers, in particular specialists designing and
     implementing cryptographic solutions for personal data protection within commercial organisations or governmental services for
     citizens.

Quiz by ENISA: NIS quiz for all on privacy and general security
ENISA
‘Time to adopt PETs’ poster
ENISA cyber security awareness material
is available online here

About ENISA: ENISA works closely together with members of both the public and private sector, to deliver advice and solutions that are based on experience. This includes, the pan-European Cyber Security Exercises, the development of national Cyber Security Strategies, CERTs cooperation and capacity building, but also studies on secure cloud adoption, addressing data protection issues, privacy enhancing technologies and privacy on emerging technologies, eIDs and trust services, and identifying the cyber threat landscape. ENISA also supports the development of the European Union (EU) policy and law on matters relating to network and information security (NIS), thereby contributing to economic growth in Europe’s internal market.

 

For media and press enquiries please contact press@enisa.europa.eu, Tel: +30 2814 409576

ENISA Report on Information Sharing and Common Taxonomies between CSIRTs and Law Enforcement Agencies

Tue, 01/26/2016 - 13:40

ENISA publishes its report on Information Sharing and Common Taxonomies between CSIRTs and Law Enforcement Agencies (LEAs).  The objective of this study is to enhance cooperation both between the Member States (MS) of the EU and between related Network and Information Security (NIS) communities.

The study, which is a continuation of ENISA’s work in the area of fight against cybercrime, ENISA aims at identifying which information can be shared between CSIRTs and LEAs and how this can be achieved from a technical and organisational perspective.

This report presents four proposals:

    • A taxonomy for the exchange of information based on desk research, to define a common vocabulary for the description of cyber incidents based on the approval of the majority of the community
    • A sharing mechanism for the exchange of information, based on a taxonomy. This element is still being debated, as explained further on in this document
    • An update model for the taxonomy, to answer new requirements that could arise from the CSIRTs and the LEAs
    • A roadmap for the implementation of the taxonomy in the exchange of information across CSIRTs and LEAs and the potential use of a sharing mechanism to enhance these exchanges

 

Full report available here 
For technical information: cert-relations@enisa.europa.eu
For more on the subject and press enquiries please contact press@enisa.europa.eu , Tel. +30 2814 409576

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA launches eHealth Security Experts Group

Thu, 01/21/2016 - 12:45

ENISA in 2015, worked for the first time in the area of eHealth publishing a report on eHealth Security and Resilience.Under this topic ENISA launches today the ENISA 'eHealth Security Experts Group' with the aim to create an active community to share information, exchange knowledge and to disseminate our work of consensus.

Key players that could apply to participate in the eHealth Security group:

  • CISOs and CIOs in healthcare industry
  • Healthcare providers and manufacturers
  • Public Sector Authorities that are involved within the healthcare sector
  • Academic Institutions with research interest in the field
  • Standardisation bodies in the field of cyber security and eHealth

 

Read the terms of reference and share to your stakeholders!

Apply here: Application form

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA trains Incident Handlers in Brussels

Wed, 01/20/2016 - 09:00

On the 19th and 20th January 2016, ENISA organised together with CERT.be a workshop on incident handling.

The two-day training focuses on Incident handling procedures, Memory Forensics and Malware Analysis. ENISA’s trainers cover the concepts of memory forensics, such as acquisition of memory and its analysis, and additionally gave attendants an overview of the tools and methodologies used to perform malware analysis.

During the training, participants from various Belgian public and private organisations together with trainees from CERT-EU and European Commission follow hands-on tutorials to solve various cyber security incidents.

The courses are based on ENISA training material developed for operational communities, such as CSIRTs. The material is also available online:

Memory Forensics
Identification and handling of electronic evidence

Artifact Analysis

Artifact handling and analysis

The event is hosted and supported by CERT.be

For technical information please contact us at cert-relations (at) enisa.europa.eu 

More ENISA
training material and to meet the ENISA trainers click on the video

For press enquiries
please contact: press@enisa.europa.eu

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Secure Cloud 2016: Call for proposals

Tue, 01/12/2016 - 16:20

The call for proposals for presentations for the Secure Cloud 2016, 4th edition is now open. The biggest European Cloud Security event, is co-organised by CSA, ENISA and Fraunhofer FOKUS.

The two-day conference will take place in Dublin on the 24th and 25th May,2016.

Be part of the greatest cloud community. Join us!

See information on previous events.


 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

How to assess maturity of national and governmental CSIRTs

Mon, 01/11/2016 - 13:10

Nowadays the role and functions of national and governmental CSIRTs are expanding and growing, so teams must keep up with newly created demands and expectations. Improving maturity allows teams to constantly enhance their capabilities.

The report focuses on CSIRT maturity, and the Trusted Introducer certification scheme for CSIRTs as an indicator of the maturity level of teams. The assessment parameters covered are described from a dual perspective:

  • of the team that is preparing for the certification process
  • of teams that have already undergone certification and even recertification

The aim of this document is to be a guiding tool for those national and governmental CSIRTs which are considering reaching the next level of maturity and good understanding of their capabilities.

The motivation for national and governmental CSIRTs to gain certification is attributed to the following:

  • to evaluate CSIRT organisation against international criteria
  • to an external drive to understand, document and put in order processes within the CSIRT team
  • to establish or put in order auditing, accountability and reporting schemes
  • to implement continuous improvement in a quality management framework
  • for public relations both locally, towards the supervising institutions, and internationally, to demonstrate the ‘country’s CSIRT level’.

 

Full report is available online.

For more on the subject matter please contact cert-relations (at) enisa.europa.eu  

For interviews and press enquiries please contact: press@enisa.europa.eu


 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA at the Cyber Law Research Centre conference on cybersecurity

Mon, 01/04/2016 - 09:20

ENISA participated at the conference on cybersecurity organized by the Cyber Law Research Centre of the Law School of the University of Lisbon. ENISA was represented by its Head of Administration Mr Empadinhas.

ENISA’s Head of Administration Paulo Empadinhas gave the keynote address and participated at the panel discussion on "The Internet of Things vs. Privacy - A European vision development". ENISA’s Head of Administration gave an overview of the latest challenges in the area of cybersecurity as these unravel with the latest technological trends such as IoT. He spoke on how these can be tackled while maintaining a balance between privacy and the fundamental rights of citizens and at the same time support industry development and the EU economy through enabling factors such as cybersecurity. In this scope, Paulo Empadinhas commented: “the new agreements on the data protection regulation and the NIS directive are an important step, enhancing both the privacy of EU citizens and privacy and security in the EU industry, creating a trusted environment and the further advancement of the DSM”.

During the conference four major themes were looked into:

  • European cybersecurity policy
  • Human dignity
  • Protection of minors in cyberspace
  • Freedom of expression


Mr Empadinhas also congratulated the initiative by the Cyber Law Research Centre on the launch of the new journal on cybersecurity, which will help towards building a secure cyberspace in Europe.

Read the interview by ENISA’s Executive Director Udo Helmbrecht to the journal as soon as it becomes available here.

 

For pres enquiries contact press@enisa.europa.eu , Tel. +30 2814 409576

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Privacy by design in big data: An overview of privacy enhancing technologies in the era of big data analytics

Thu, 12/17/2015 - 14:39

The extensive collection and further processing of personal information in the context of big data analytics has given rise to serious privacy concerns, especially relating to wide scale electronic surveillance, profiling, and disclosure of private data. Despite the benefits of analytics, it cannot be accepted that big data comes at a cost for privacy. At the same time technology and innovation cannot be stopped. It is, thus, of utmost importance to craft the right balance between making use of big data technologies and protecting individuals’ privacy and personal data.

ENISA publishes a report on privacy by design in big data, focusing exactly on striving this balance by highlighting privacy as a core value of big data and examining how technology can be on its side.    

In particular, following ENISA’s former work on privacy and data protection by design, this report aims at contributing to the big data discussions by defining privacy by design strategies and relevant privacy enhancing technologies, which can allow for all the benefits of analytics without compromising the protection of personal data. Such technologies include anonymization, the “traditional” analytics technique, the emerging area of encrypted search and privacy preserving computations, granular access control mechanisms, as well as policy enforcement and accountability. Moreover, new transparency and access tools in big data are explored, together with techniques for user empowerment and control.

 

For full report

For interviews and press enquiries please contact: press@enisa.europa.eu , Tel. +30 2814 409576

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENCYSEC Members visit ENISA

Thu, 12/17/2015 - 07:45

ENISA received a visit from a group of representatives from France, The Former Yugoslav Republic of Macedonia, Moldova, and Kosovo of the project "Enhancing cybersecurity, Protecting information and Communication networks - ENCYSEC".
The project is funded by the EU under the Instrument contributing to Stability and Peace, managed by EC DG DEVCO.

The topics discussed included:

  • CERT capacity building;
  • Cyber security strategies and awareness raising
  • Enhancing cooperation: PPPs and international cooperation

 

Background:
ENCYSEC is a pilot projecy with the overall objective to increase the security and resilience of information Communciation Technologies networks in the beneficiary coutries by building and training local capacities to adequately prevent, respond and prosecute cyber-attacks and/or accidental failures. For more information please visit:

www.encysec.eu and www.expertisefrance.fr

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Online privacy tools for the general public: towards a methodology for the evaluation of PETs for internet and mobile users

Wed, 12/16/2015 - 22:05

One of the most serious concerns today is the preservation of privacy when using internet and mobile applications. This concern has given rise to an increasing appearance of online tools affirming that they can offer certain privacy-preventive functionality, such as secure communication, protection against tracking, or anonymous browsing. However, in many cases the functionality of these tools is not as expected. Privacy enhancing technologies (PETs) that fail to offer what they promise can be very dangerous, as the false sense of protection can compromise the users’ personal data and negatively affect or even put in harm’s way their personal life.

ENISA conducted under its 2015 work programme a study in the area of PETs  for the protection of online privacy (online privacy tools). The report is addressed to all related stakeholders, such as the PETs industry, academia, data protection authorities, and the general public, for instance internet or mobile users who would like to use specific tools for the preservation of their privacy and personal data.

The objectives of the study are:

a) to define the current level of information and guidance that is provided to the general public, and
b) to provide a proposal for an assessment model for online privacy tools that could bring more assurance in their use, supporting their wider adoption by internet and mobile users. 

In particular the study comprises of three parts, providing:

  • A review of existing web portals promoting the use of online privacy tools by the general public.
  • A proposed methodology for evaluating the reliability and usability of online privacy tools based on a set of predefined criteria.
  • A pilot evaluation and comparative presentation of PETs in the area of anti-tracking browser extensions.

 

For the full report
For technical information: Athena.bourka@enisa.europa.eu

For interviews and press enquiries press@enisa.europa.eu, Tel +30 2814 409576

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

New ENISA Report on Regulatory and Non-regulatory Approaches to Information Sharing

Wed, 12/16/2015 - 08:00

ENISA publishes its report on “Cyber Security Information Sharing: An Overview of Regulatory and Non-regulatory Approaches”.

ENISA identified three types of approaches to share information on cyber security incidents:
1) Traditional regulation
2) Alternative forms of regulation, such as self- and co-regulation
3) Other approaches to enable information sharing, such as information and education schemes.

Some key findings are:

  • The prevalence of traditional regulation, alternative forms of regulation (such as self- and co-regulation) and other approaches to enable information sharing on cyber incidents, varies from country to country
  • The frequent use of alternative types of regulatory initiatives (co- and self-regulation) in the field of information sharing on cyber incidents
  • Different regulatory and non-regulatory approaches bring different challenges with them
  • Trust is a key element for the success of the information sharing on cyber incidents
  • National and governmental CSIRTs play an important role in the field

 
Background
The study aims to present the regulatory and non-regulatory approaches of EU Member States as well as EEA and EFTA countries to share information on cyber incidents, the different sector regulation challenges of managing cyber security issues, and their key practices in addressing them. The primary target audience of this report are policy and law makers at EU and Member State level, the CSIRT community (in particular national and governmental CSIRTs), the law enforcement community and other operational communities.

Full report available here: Cyber Security Information Sharing: An Overview of Regulatory and Non-regulatory Approaches

For interviews and press enquiries please contact press@enisa.europa.eu , Tel.+30 2814 409576

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Is Europe ready to protect SCADA?

Fri, 12/11/2015 - 08:46

Industrial Control and SCADA systems are the heart of the European Critical Infrastructures. ENISA, as part of its activities, has undertaken several actions to support ICS stakeholders by helping them to improve their security practices and by raising awareness to both industry and the public sector. In 2015 the Agency publishes “Analysis of ICS-SCADA Cyber Security Maturity Levels in Critical Sectors”.

The goal is to address and pave the road for future efforts in national and European ICS-SCADA security activities. For this reason, ENISA has analysed the current maturity levels in ICS-SCADA across European Member States and drawn conclusions on different national approaches. The aim is to present the current national ICS-SCADA security postures and to provide the stakeholders with a set of recommendations on how they can improve their practices, especially regarding critical sectors.

Four 'maturity profiles' were identified. The analysis revealed also areas for improvement. As a result, a set of high level and context specific future recommendations to policy and decision makers are issued that help them raise the bar of ICS SCADA in Europe:

  • Align ICS-SCADA efforts with national cyber security strategies and CIIP effort
  • Develop good practices specific to ICS-SCADA cyber security
  • Standardize information sharing among critical sectors and Member States
  • Build ICS-SCADA cyber security awareness
  • Foster expertise with ICS-SCADA cyber security trainings and educational programmes
  • Promote and support ICS-SCADA cyber security research and test beds

 

The recommendations shall assist, both the European Commission and the Member States, in the process of building a resilient ICS-SCADA environment in Europe.  To support this, ENISA will continue to release reports and documents tackling the topic of cyber security in industrial control systems and work closely with the ENISA ICS Stakeholder Group and EuroSCSIE https://resilience.enisa.europa.eu/ics-security enhancing the security of ICS SCADA in Europe http://enisa.europa.eu/scada  .

 

For full report

Brochure on ENISA SCADA activities available for download

 

For technical information please contact Rossella Mattioli, Security and Resilience of Communication Networks Officer, rossella.mattioli@enisa.europa.eu , +30 2814409628

For press enquiries please contact press@enisa.europa.eu, Tel.+30 2814 409576

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA proposes reporting scheme on security incidents for European TSPs

Wed, 12/02/2015 - 22:00

ENISA publishes its proposal for reporting security incidents by TSPs (Trusted Service Providers)  in the context of the new European eIDAS regulation.

ENISA supports supervisory bodies with the implementation of national incident notification schemes. The objective of this proposal is to support efficient and harmonized incident notification schemes across the European Union.

The document is produced in close collaboration with representatives from the European Commission, National supervisory bodies and other competent authorities in the field of trusted services.

In the following year ENISA will develop a tool which will enable supervisory bodies to submit their national reports to ENISA and the Commission.

Full report available here: Proposal for an Incident reporting framework for eIDAS Article 19 

For more on the subject and interviews please contact press@enisa.europa.eu , Tel. +30 2814 409576

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Updated ENISA report reveals the Agency’s key role for the CSIRT community

Mon, 11/23/2015 - 09:38

ENISA’s latest report is a survey on ‘Capacity building activities for Computer Security Emergency Response Teams (CSIRTs)  impact analysis’ reveals the CSIRT’s community’s strong support to ENISA’s facilitator and coordinator role, as the Agency bridges the gap between the technical focus of the CSIRTs and the political focus of the Commission.

The survey which was conducted among the EU and non EU-CSIRT community, EU institutions, Member State bodies, National Liaison Officers, public and private entities, clearly shows the needs and the expectations of its stakeholders. Furthermore, it has been identified that ENISA needs to take on a more proactive role and also move from paper-work support to ad-hoc, more practical support; while also provide a more tailored two-speed approach, adapting to differences in maturity between less and more mature CSIRTs.

Respondents highlighted the Agency’s role with regards to its contribution towards the implementation of the Critical Information Infrastructure Protection (CIIP) policy, the Cybersecurity Strategy of the European Union, and the implementation of the upcoming NIS Directive. Within this frame, more trust building, cooperation, training and materials were requested.

ENISA has been instrumental in building and actively supporting the growing network of CSIRTs since its inception in 2005. The Agency publishes recommendations aiming to level and elevate CSIRTs capabilities and provides training material. The conducted study proposes the way forward up until 2020 and is an update of last year’s report, targeted at policy and decision-making bodies, and EU institutions responsible for the CSIRT EU Member State policy agenda, experts and the CSIRT community itself.

 

The full report is available online: ENISA’s CSIRT-related capacity building activities.

Previous report available here: Supporting the CERT community impact analysis and roadmap.

 

 

For interviews and press enquiries please contact: press@enisa.europa.eu

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

EU citizens’ training on eSkills: evaluation of the European Cyber Security Month 2015 and head start for 2016

Thu, 11/05/2015 - 14:05

ENISA and the Austrian Federal Chancellery organised the cyber security education seminar, which took place on November 5th 2015 at the premises of the Austrian Federal Chancellery, in Vienna. The meeting started its working sessions following the keynote address of Prof. Reinhard Posch, Chief Information Officer of Austria.

The cyber security education seminar was organized to evaluate the 2015 edition of the European Cyber Security Month (ECSM) advocacy campaign. Its objective was the evaluation, to get partners and coordinators in touch, while at the same time set the foundations for good cooperation in the next edition. The advanced planning of ECSM2016 started with a rich exchange of ideas on common actions, metrics, insights into the acquisition process and challenges for the future.

The Austrian Federal Chancellery thanked ENISA for the organization of this event. "Austria recognizes the importance of Cyber Security awareness and has made it a priority also present in the Austrian Cyber Security strategy which was published in 2013. The European Cyber Security Month is an awareness campaign highly recognized in Austria. We therefore welcome this opportunity to share our experiences with the Austrian implementation of the European Cyber Security Month with other national coordinators, and to hear about some of the challenges they faced.”

ENISA’s Head of Core Operations Dr Steve Purser said: “We would like to thank our partners for their involvement in the European Cyber Security Month 2015 and the Austrian Federal Chancellery for their partnership in this evaluation seminar. Providing expertise for cyber security education is ENISA’s daily job and EU citizens are at the top of the agenda to get first-hand actionable information. We strive to build a model, to brokerage our expertise to the community and networks of multipliers. This will be the focus for the next edition too: encouraging common activities with both public and private organisations while providing our expertise.”

 

Metrics from the 2015 campaign

In total there were 242 activities encoded in the official calendar from public and private stakeholders in 32 countries. The outreach on social media on the 1st of October alone, was 718,967 accounts reached. Number of visitors for www.cybersecuritymonth.eu during the entire month of October was 52,574 page views, with 71% corresponding to new visitors from all around Europe. More details to be published in the evaluation report by the end of the year.

ENISA published:


Available material for users:

  • NIS quiz to play and earn a CyberSecMonth badge
  • a report on University courses and certification programmes in Europe, on network and information security topics                                                    
  • Tips and advice in 23 languages 

The recommendations include network and information security tips for educators and employees, risks associated with the use of discontinued software or anti-malware, security in relation to popular cloud services (such as social media), online data protection rights, and understanding lessons learned to date through facilitating the pan European Cyber Exercises between the public and private sector.                        

And the annually updated:

 

Together we build a joint EU advocacy campaign on Cyber Security topics, follow us #CyberSecMonth #ENISA!

For more on the subject and press enquiries please contact press@enisa.europa.eu, Tel. +30 2814 409576

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Are you ready for the next cyber crisis?

Mon, 11/02/2015 - 09:03

We are “Stronger Together”: be ready for the next cyber crisis.

The planning of the 'Cyber Europe 2016' programme of exercises was officially launched in the Initial Planning Conference held on the 26th and 27th October 2015. The planning of the conference hosted experts from 26 particpating countries.

Call for particpation in the exercise will be launched early in 2016. For more information contact the ENISA Cyber Crisis Cooperation (C3) team: c3_at_enisa.europa.eu  

 

To gain some insight into the complex cybersecurity exercise that was carried out in 2014, the public version of the After Action Report of the pan-European cybersecurity exercise Cyber Europe 2014 (CE2014) is available here.

 

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Pages