EU cybersecurity agency ENISA receives a new Regulation giving it a 7-year mandate and an expanded set of duties, including Computer Emergency Response Teams (CERTs) in member states and world-class cybersecurity exercises.
Established in 2004 with a 5-year mandate, ENISA had its mandate extended in 2008 and 2011 to allow time for new Regulation development.
"The new Regulation is great news for ENISA and for cybersecurity in Europe," ENISA Executive Director Prof. Udo Helmbrecht says. "It means ENISA now has the scope and authority to make an even bigger difference in protecting Europe’s cyberspace. We will be working more closely with Member States and putting an increased focus on cybercrime, working with Europol."
Key points of the Regulation include:
- A strong interface for the fight against cybercrime (focusing on prevention and detection) with the Europol European Cybercrime Centre (EC3)
- Support for the development of EU cybersecurity policy and legislation
- The Agency supporting research, development and standardisation, with EU standards for risk management and the security of electronic products, networks and services
- Support for the prevention and detection of, and response to cross-border cyber-threats
- Aligning ENISA more closely to the EU Regulatory process, providing EU countries and Institutions with assistance and advice
The Regulation also confirms ENISA retains its current HQ in Heraklion, Crete, as well as its Athens operational office.