ENISA EUROPEAN NIS AGENDA AND THE PERSPECTIVE Prof. Dr. Reinhard - - PDF document

enisa
SMART_READER_LITE
LIVE PREVIEW

ENISA EUROPEAN NIS AGENDA AND THE PERSPECTIVE Prof. Dr. Reinhard - - PDF document

Jul 26, 2023 229 likes •344 views

ENISA EUROPEAN NIS AGENDA AND THE PERSPECTIVE Prof. Dr. Reinhard Posch Chairperson ENISA Management Board THE GENERAL GOAL The general goal of ENISA and of any subsequent situation is to strengthen Euorpe with NIS and to enable NIS

slide-1
SLIDE 1

ENISA

EUROPEAN NIS AGENDA AND THE PERSPECTIVE

  • Prof. Dr. Reinhard Posch

Chairperson ENISA Management Board

THE GENERAL GOAL

The goal is to be reached by enhancing the NIS agenda within the Member States with the help of ENISA and by providing a European NIS HUB. The general goal has not changed with the experience gathered in the first phase, the need is highly recognized and any continuation must focus in an even better t h ith th l l The general goal of ENISA and of any subsequent situation is to strengthen Euorpe with NIS and to enable NIS competitiveness for all Member States.

slide-2
SLIDE 2

THE WP PROCESS

3

JAN FEB MAR APR MAY JUN

Informal MB/PSG Workshop to

  • Discuss
  • Prioritise

MB meeting Preliminary Draft WP08 PSG meeting Collection of proposals for multi-annual thematic programmes (Agency, MB & PSG) Collection of work Package proposals (Agency, MB & PSG) PSG meeting Guidance and

  • rientations for the

refinement phase

MTP1: Resilience

Stock taking

  • Regulation
  • Market/operators
  • Technology

Gap analysis Develop

  • Best practices
  • Recommendations

Promotion

  • Best practices
  • Recommendations

Collectively evaluate and improve resilience in European e-Communication networks

By 2010, the Commission and at least 50% of the Member States have made use of ENISA recommendations in their policy making process

slide-3
SLIDE 3

MTP2: Cooperation models

European NIS good practice Brokerage Aware- ness Raising CERTs eID

Achieving synergy and efficiency by learning from each other By 2010, at least 10 Member States have participated in at least 3 different cooperation models

6

Online Platform as supporting tool The PSG members are willing to share Existing supporting tools Member States working together The ENISA team at your service

Cooperation

slide-4
SLIDE 4

7

MTP3: Emerging risks

Capacity to identify Emerging Risks

By 2010, at least 30 stakeholder (organisations) from at least 15 Member States refer to ENISA as point of reference emerging risks Creating trust and confidence with decision makers through better insight on emerging risks

Stakeholder Forum Position papers

PA1: Micro enterprises

Ad-hoc Working Group Pilots Investigate the feasibility for developing an MTP on micro enterprises

slide-5
SLIDE 5

WP OVERVIEW

MTPs (2008 – 2010) WPKs (2008)

Supporting high-level strategic goals

Building confid. Internal Market - regulation MS co-

  • peration

Stakeh. Dialogue Request

MTP1: Improving resilience of European e-Communication networks

  • Legal analysis
  • Market analysis (operators)
  • Technology analysis

√ √ √ √

MTP2: Developing and maintaining cooperation models

  • Awareness raising community
  • CERT competence circle
  • eID interoperability
  • European NIS good practice

Brokerage

√ √ √

MTP3: Identifying emerging risks for creating trust and confidence

  • Assessing and discussing

emerging risks

  • Position papers

√ √ √ PA (2008) WPKs (2008)

Supporting high-level strategic goals

Building confid. Internal Market - regulation MS co-

  • peration

Stakeh. Dialogue Request

PA1: Building information confidence with micro enterprises

  • ad-hoc Working Group
  • Risk management pilots

√ √ √ √

WHERE STANDS ENISA

All voices exhibited a paralellism of incremental and short term changes and some general mid and long term adjustments. THROUGH THESE SUGGESTIONS A NEED FOR CONTINUITY NOT FOR A STOP AND RETRY IS HIGHLY EMPHASISZED ENISA despite facing always the challenge of being temporarily installed was swiftly put into operation. ENISA also steadily improved its work program. Still the evaluation did show justified critisism both on the framework and the implementation.

slide-6
SLIDE 6
  • Extension
  • Revision of regulation (less detailed!)
  • Increase size
  • Improve governance (MB)
  • High-profile figure
  • Location

THE RECOMMENDATIONS

The order of the recommendations have a clear voice which was heard by the Commission yielding to the „extention à l‘identique“. Any other approach would damage the image, the expertise and the investment with respect to ENISA

THE 2007 PROPOSAL

2008 2009 2010 2011 13.11.2007 20.12.2007 FALL 2008 1.10.2009 15.3.2011 1.1.2010

13.11.2007 Commission Decision: Regulation establishing the European Electronic Communications Market Authority EECMA 20.12.2007 Commission Decision: Extension of the present ENISA regulation „à l’identique“ until 2011 (7 years)

slide-7
SLIDE 7

REASONING

  • ENISA: the policy was valid.
  • ENISA: the organisational structure and

impact can be improved.

  • ENISA: the mix of skills, the percentage of

administrative overhead and the size needs adjustment.

  • The regulation established ENISA for 5 years

(Art 27) with a review clause (Art 25).

THE STATE OF THE PLAY

  • The 2007 proposal by the Commission was not

taken up as is by Member States (Council) and Parliament

  • A compromise was found that is likely to succeed

and that that is now in the avenue of positive decision.

  • TO EXTNED ENISA AS IS UNTIL 2012 (i.e.

3YRS)

  • TO START AN INTENSIVE DISCUSSION ON

THE HOW THE FUTURE SHOULD LOOK LIKE.

slide-8
SLIDE 8

SOME LIKELY ASPECTS

  • It is largely undoubted that there should be a

continuation

  • there seems to be quite a consensus that the

integration with the regulators should not happen

  • it seems very necessary that NIS skills need a

clear improvement

  • the PSG model is well accepted
  • the discussion will focus on the scope and on

the size but also governance will be at stake

OPPORTUNITIES

FOCUS ON THE FUTURE: STRENGTH AND OPPORTUN

FUTURE NIS AGENDA ENISA AGENDA

slide-9
SLIDE 9

OPPORTUNITIES

  • Observe expected common areas between now and

the future

– strengthen activities in the common area – look for flexible interpretation of regulations

  • Further create competence

– future oriented staff policy

  • Focus on targets and impact

– advice – research – best practice

  • Enhance cooperation and work relation

– with national competent bodies and all stakeholders

OPPORTUNITIES

(POSSIBLE ACTIVITIES)

  • more intensive link up with academia and research
  • develop maintain crypto capacity

– this needs backup by the Member States and the Commission

  • observing - advising – monitoring the algorithms

scenario

– could also be beneficial for eSignature interoperability – a clear guidance by the Member States and the Commission would be needed

  • best practice pool for crypto applications

ASPECTS TOUCHING ECRYPT

slide-10
SLIDE 10

THE TRANSIT PERIOD

THE TRANSIT PERIOD UNTIL 15.3.2012 WILL BE A MAJOR CHALLENGE. VISIBILITY, IMPACT AND SUCCESS HAS TO INCREASE TO BETTER POSITION THE AGENCY AND TO BOOST THE NEW SETUP.