fbpx

Download free GDPR compliance checklist!

Tag Archives for " ENISA "

The European Union Agency for Cybersecurity Publishes a Draft Certification Scheme for Cloud Services

On December 22, 2020, the European Union Agency for Cybersecurity (ENISA) published a draft scheme for cloud services. Cloud services that meet the security requirements of the scheme will be able to obtain a certification attesting their level of cybersecurity.

The draft scheme sets out criteria that apply to the design and implementation of cloud services, including their security features and the essential processes used throughout their lifecycle. It supports three assurance levels: “basic”, “substantial”, and “high”.

Source: The European Union Agency for Cybersecurity Publishes a Draft Certification Scheme for Cloud Services

ENISA publishes report on Industry 4.0 Cybersecurity

The EU Agency for Cybersecurity ENISA is stepping up its efforts to foster cybersecurity for Industry 4.0 by publishing a new paper on ‘Challenges and Recommendations for Industry 4.0 Cybersecurity’.

ENISA lists high-level recommendations in order to facilitate the promotion and wider take-up of Industry 4.0 and relevant innovations in a secure manner. The recommendations are addressed to different key stakeholders groups.

Full report: Industry 4.0 – Cybersecurity Challenges and Recommendations

 

Agreement on Proposal for Cybersecurity Act

The European Commission, the European Parliament and the Council of the European Union reached an agreement earlier this month regarding changes to the Proposal for a Regulation on ENISA, the “EU Cybersecurity Agency”, and repealing Regulation (EU) 526/2013, and on Information and Communication Technology Cybersecurity Certification (the “Cybersecurity Act”).

The agreement empowers the EU Cybersecurity Agency (known as European Union Agency for Network and Information and Security, or “ENISA”) and introduce an EU-wide cybersecurity certification for services and devices.

Full article: Agreement on Proposal for Cybersecurity Act

New powers for EU Cyberagency

On 10 December 2018, the European lawmakers reached a political agreement on the European Cybersecurity Act.

The intention of this new EU Regulation is to better protect the European Union against cyber-attacks, including a strengthening of the powers of the European Agency for Network and Information Security (“ENISA”).

Source: EU – New powers for European Cyberagency

ENISA publishes the first comprehensive study on cyber Threat Intelligence Platforms

ENISA has released the first comprehensive study on cyber Threat Intelligence Platforms (TIPs) focused on the needs of consumers, users, developers, vendors and the security research community.

The study channels its efforts into identifying some of the key opportunities and limitations of existing platforms and solutions, since information exchange formats and tools remain central items on the agenda of the cybersecurity community in general, and particularly of incident responders.

Source: ENISA publishes the first comprehensive study on cyber Threat Intelligence Platforms — ENISA

ENISA publishes reports on PPPs and ISACs

A common objective of every European national cyber security strategy is collaboration to enhance cyber security across all levels, from threat information sharing to awareness raising. Collaboration is often achieved through two formal structures: Information Sharing and Analysis Centres (ISACs) and Public Private Partnerships (PPPs).

ENISA collected information on best practices and common approaches that resulted in two studies, namely Cooperative Models for Public Private Partnership and Information Sharing and Analysis Centres.

Source: Cybersecurity built on trust – ENISA supports Member States in establishing PPPs and ISACs — ENISA

ENISA issues a report on emerging technologies and security challenges

ENISA has produced the first version of a report that provides an overview of key emerging technologies and their associated security challenges, and aims to identify future security issues associated with these technologies.

Source: ENISA looks into the Crystal Ball: a report on emerging technologies and security challenges — ENISA

ENISA publishes report on cybersecurity culture

On 6 February 2018 – the international ‘Safer Internet Day’ – ENISA publishes a report providing organisations with practical tools and guidance to develop and maintain an internal cybersecurity culture.

Source: Strong cybersecurity culture as efficient firewall for organisations — ENISA

ENISA publishes report on European Data Protection Certification mechanisms

ENISA publishes a report destined to familiarise data protection experts with the terminology of certification and to clarify concepts which are relevant to the General Data Protection Regulation (GDPR) certification. The report identifies and analyses challenges and opportunities faced by data protection certification mechanisms, including seals and marks.

Source: ENISA report: Concepts and recommendations on European Data Protection Certification mechanisms — ENISA

>