Study on the Evaluation of the European Union Agency for Network and Information Security

Karin Attström, Vanessa Ludden, Franziska Lessmann, Pär Weström, Johannes Conrads, Helena Farrand Carrapico, Andrej Savin, Cristina de la Maza

Research output: Book/ReportReportCommissionedpeer-review

Abstract

The European Union Agency for Network and Information Security (ENISA) was established in 2004. The Agency provides advice and recommendations, data analysis, and supports awareness raising and cooperation by the EU bodies and Member States in the field of cybersecurity. ENISA uses its expertise to improve cooperation between Member States, and between actors from the public and private sectors, as well as to support capacity building. The present study involves the evaluation of ENISA over the 2013-2016 period, assessing the Agency’s performance, governance and organisational structure, and positioning with respect to other EU and national bodies. It assesses ENISA’s strengths, weaknesses, opportunities and threats (SWOTs) with regard to the new cybersecurity and digital privacy landscape. It also provides options to modify the mandate of the Agency to better respond to new, emerging needs and assesses their financial implications. The findings of the evaluation study show that ENISA has made some important achievements towards increasing NIS in the EU. However, a fragmented approach to cybersecurity across the EU and issues internal to the Agency, including limited financial resources, hinder ENISA’s ability to respond to the ever growing needs of stakeholders in a context of technological developments and evolving cybersecurity threats.
The European Union Agency for Network and Information Security (ENISA) was established in 2004. The Agency provides advice and recommendations, data analysis, and supports awareness raising and cooperation by the EU bodies and Member States in the field of cybersecurity. ENISA uses its expertise to improve cooperation between Member States, and between actors from the public and private sectors, as well as to support capacity building. The present study involves the evaluation of ENISA over the 2013-2016 period, assessing the Agency’s performance, governance and organisational structure, and positioning with respect to other EU and national bodies. It assesses ENISA’s strengths, weaknesses, opportunities and threats (SWOTs) with regard to the new cybersecurity and digital privacy landscape. It also provides options to modify the mandate of the Agency to better respond to new, emerging needs and assesses their financial implications. The findings of the evaluation study show that ENISA has made some important achievements towards increasing NIS in the EU. However, a fragmented approach to cybersecurity across the EU and issues internal to the Agency, including limited financial resources, hinder ENISA’s ability to respond to the ever growing needs of stakeholders in a context of technological developments and evolving cybersecurity threats.
LanguageEnglish
Place of PublicationLuxemborg
PublisherPublications Office of the European Union
Number of pages202
ISBN (Print)9789279721106
Commissioning bodyEuropean Commission
DOIs
StatePublished - 2017

Cite this

Attström, K., Ludden, V., Lessmann, F., Weström, P., Conrads, J., Carrapico, H. F., ... de la Maza, C. (2017). Study on the Evaluation of the European Union Agency for Network and Information Security. Luxemborg: Publications Office of the European Union. DOI: 10.2759/674883
Attström, Karin ; Ludden, Vanessa ; Lessmann, Franziska ; Weström, Pär ; Conrads, Johannes ; Carrapico, Helena Farrand ; Savin, Andrej ; de la Maza, Cristina. / Study on the Evaluation of the European Union Agency for Network and Information Security. Luxemborg : Publications Office of the European Union, 2017. 202 p.
@book{6dfc7aae935243458c9a95f40720a7f7,
title = "Study on the Evaluation of the European Union Agency for Network and Information Security",
abstract = "The European Union Agency for Network and Information Security (ENISA) was established in 2004. The Agency provides advice and recommendations, data analysis, and supports awareness raising and cooperation by the EU bodies and Member States in the field of cybersecurity. ENISA uses its expertise to improve cooperation between Member States, and between actors from the public and private sectors, as well as to support capacity building. The present study involves the evaluation of ENISA over the 2013-2016 period, assessing the Agency’s performance, governance and organisational structure, and positioning with respect to other EU and national bodies. It assesses ENISA’s strengths, weaknesses, opportunities and threats (SWOTs) with regard to the new cybersecurity and digital privacy landscape. It also provides options to modify the mandate of the Agency to better respond to new, emerging needs and assesses their financial implications. The findings of the evaluation study show that ENISA has made some important achievements towards increasing NIS in the EU. However, a fragmented approach to cybersecurity across the EU and issues internal to the Agency, including limited financial resources, hinder ENISA’s ability to respond to the ever growing needs of stakeholders in a context of technological developments and evolving cybersecurity threats.",
author = "Karin Attstr{\"o}m and Vanessa Ludden and Franziska Lessmann and P{\"a}r Westr{\"o}m and Johannes Conrads and Carrapico, {Helena Farrand} and Andrej Savin and {de la Maza}, Cristina",
year = "2017",
doi = "10.2759/674883",
language = "English",
isbn = "9789279721106",
publisher = "Publications Office of the European Union",
address = "Luxembourg",

}

Attström, K, Ludden, V, Lessmann, F, Weström, P, Conrads, J, Carrapico, HF, Savin, A & de la Maza, C 2017, Study on the Evaluation of the European Union Agency for Network and Information Security. Publications Office of the European Union, Luxemborg. DOI: 10.2759/674883

Study on the Evaluation of the European Union Agency for Network and Information Security. / Attström, Karin; Ludden, Vanessa; Lessmann, Franziska; Weström, Pär; Conrads, Johannes; Carrapico, Helena Farrand; Savin, Andrej; de la Maza, Cristina.

Luxemborg : Publications Office of the European Union, 2017. 202 p.

Research output: Book/ReportReportCommissionedpeer-review

TY - RPRT

T1 - Study on the Evaluation of the European Union Agency for Network and Information Security

AU - Attström,Karin

AU - Ludden,Vanessa

AU - Lessmann,Franziska

AU - Weström,Pär

AU - Conrads,Johannes

AU - Carrapico,Helena Farrand

AU - Savin,Andrej

AU - de la Maza,Cristina

PY - 2017

Y1 - 2017

N2 - The European Union Agency for Network and Information Security (ENISA) was established in 2004. The Agency provides advice and recommendations, data analysis, and supports awareness raising and cooperation by the EU bodies and Member States in the field of cybersecurity. ENISA uses its expertise to improve cooperation between Member States, and between actors from the public and private sectors, as well as to support capacity building. The present study involves the evaluation of ENISA over the 2013-2016 period, assessing the Agency’s performance, governance and organisational structure, and positioning with respect to other EU and national bodies. It assesses ENISA’s strengths, weaknesses, opportunities and threats (SWOTs) with regard to the new cybersecurity and digital privacy landscape. It also provides options to modify the mandate of the Agency to better respond to new, emerging needs and assesses their financial implications. The findings of the evaluation study show that ENISA has made some important achievements towards increasing NIS in the EU. However, a fragmented approach to cybersecurity across the EU and issues internal to the Agency, including limited financial resources, hinder ENISA’s ability to respond to the ever growing needs of stakeholders in a context of technological developments and evolving cybersecurity threats.

AB - The European Union Agency for Network and Information Security (ENISA) was established in 2004. The Agency provides advice and recommendations, data analysis, and supports awareness raising and cooperation by the EU bodies and Member States in the field of cybersecurity. ENISA uses its expertise to improve cooperation between Member States, and between actors from the public and private sectors, as well as to support capacity building. The present study involves the evaluation of ENISA over the 2013-2016 period, assessing the Agency’s performance, governance and organisational structure, and positioning with respect to other EU and national bodies. It assesses ENISA’s strengths, weaknesses, opportunities and threats (SWOTs) with regard to the new cybersecurity and digital privacy landscape. It also provides options to modify the mandate of the Agency to better respond to new, emerging needs and assesses their financial implications. The findings of the evaluation study show that ENISA has made some important achievements towards increasing NIS in the EU. However, a fragmented approach to cybersecurity across the EU and issues internal to the Agency, including limited financial resources, hinder ENISA’s ability to respond to the ever growing needs of stakeholders in a context of technological developments and evolving cybersecurity threats.

U2 - 10.2759/674883

DO - 10.2759/674883

M3 - Report

SN - 9789279721106

BT - Study on the Evaluation of the European Union Agency for Network and Information Security

PB - Publications Office of the European Union

CY - Luxemborg

ER -

Attström K, Ludden V, Lessmann F, Weström P, Conrads J, Carrapico HF et al. Study on the Evaluation of the European Union Agency for Network and Information Security. Luxemborg: Publications Office of the European Union, 2017. 202 p. Available from, DOI: 10.2759/674883