ENISA Launches Guide on Sharing Information to Mitigate Network Security Vulnerabilities, Threats and Cyber Attacks

BRUSSELS and HERAKLION, Greece - EU Agency ENISA presents the first pan European Good Practice Guide on Network Security Information Exchange (NSIE). The main aim of this guide is to assist Member States and private stakeholders in setting up and running NSIEs at national level. The guide could also pave the way for the creation of the first pan European NSIE for critical communication networks and services.

ENISA’s stock taking and analysis[1] on this topic confirmed the importance and strategic value of information sharing. Member States are strongly interested in better understanding and deploying information sharing exchanges. They explicitly requested ENISA to develop a good practice guide based on observed practices of existing NSIEs.

The content of the guide represents the aggregation of good practices from a number of countries having significant expertise in the area and individual discussions with experts.

NSIE is a form of strategic partnership among key public and private stakeholders. The drivers for this information exchange are the benefits of members working together on common problems and gaining access to information which is not available from any other source.

NSIE is an excellent vehicle to: - better understand a changing security and resilience environment - learn in a holistic manner about intrusions, vulnerabilities and threats - develop recommendations for mitigating vulnerabilities, threats, & cyber attacks - jointly develop methods to continuously assess existing measures - provide unique insights and strategic views to policy makers and strategists.

The Executive Director of ENISA, Mr. Andrea Pirotti remarked:

“Information sharing is a crucial element in EU efforts to enhance the resilience and security of critical communication networks and services. Hopefully this guide will pave the way for an accelerated deployment of national NSIEs and consequently of pan European one”

This good practice guide is part of ENISA’s Resilience Program. It contributes to European Commission (or EU) strategy of Critical Information Infrastructure Protection (CIIP)[2]. This strategy calls for wide deployment of national NSIEs and the creation of a pan European Public Private Partnership for Resilience.

———————————

[1] www.enisa.europa.eu/act/res/policies/good-practices-1/informat ion-sharing-exchange

[2] ec.europa.eu/information_society/policy/nis/strategy/activitie s/ciip/index_en.htm

(Due to the length of these URLs, it may be necessary to copy and paste the hyperlinks into your Internet browser’s URL address field. Remove the space if one exists.)

Source: ENISA - European Network and Information Security Agency

For further details, please contact: Dr. Evangelos Ouzounis, Senior Expert- Network Security Policies: resilience at enisa.europa.eu or Ulf Bergstrom, Press and Communications Officer, ENISA, press at enisa.europa.eu Mobile: +30-6948-460-143