More than ten years supporting the EU Institutions in improving EU cybersecurity
Throughout this period, ENISA has been a bridge between the public and private sectors, providing unique, independent advice and strengthening the cyber security capability in Europe through its prevention and preparedness activities.
The first ENISA regulation was adopted by the EU (by the Council and the European Parliament)on the 14th March 2004. During these years ENISA has evolved to a mature organisation enhancing collaborations further.Ten years on, cyber security is even more crucial for the economy. As such, cyber security is high on the political and societal agenda.
The ten-year milestone was celebrated throughout the year with international and local events, taking stock of the past, as well as looking at the developments over the years, with a particular focus on future challenges.
ENISA celebrating its ten year presence:
ENISA celebrates 10 years in Crete – Thanking the Region of Crete and the city of Heraklion
To find out more about our work you may visit the publications section and browse through our annual reports, work programme and reports.
Background material: EU Cyber Security Strategy
Established priorities of the Agency
- the pan-European cyber security exercises
- improving critical information infrastructure protection (CIIP) across the EU
- support for implementation of Security & Data Breach notification obligations
- the ENISA threat landscape
- the EU Cybersecurity Month
- Capacity building
- CSIRTs development and training, supporting the CSIRT community
- Continue to encourage and support Article 141 requests
- Continue its collaborations through MoUs both with public and private entities
ENISA Timeline - Key dates:
2001 - 2003
|
31 May 2001
|
EU Presidency Spring Working Group of ENISA, brainstorm with NIS experts in Waxholm resulting inCouncil Resolution 31 May: eAction Plan: Information and Network Security |
|
6 June 2001
|
Communication (COM(2001)) 298 final |
|
28 January 2002
|
Council Resolution on a common approach and specific actions in the area of Network and Information Security |
|
February 2003
|
Commission Proposal for a Regulation of the European Parliament and of the Council Establishing the European Network and Information Security Agency (COM/2003/63 final) |
2004
|
10 March 2004
|
The ENISA Regulation 2004/460 is adopted |
|
6 October 2004
|
The Executive Director is nominated by the Management Board and is making a statement and replying to questions before the European Parliament |
2005
|
March 2005
|
Decision by the ED/Management Board to move ENISA to Crete |
|
1 April 2005
|
Signing of Seat Agreement in Crete |
|
1 May 2005
|
ENISA receives financial independence and has all financial controls and regulations in place |
|
1 September 2005
|
Starting operations starting in Heraklion, Crete with a first wave of new recruits from EU wide competitions |
2006
|
21 February 2006
|
Executive Director is presenting the Work Programme of ENISA before the European Parliament ITRE Committee |
|
13 April 2006
|
Visit of Commissioner Viviane Reding in Crete |
|
2 May 2006
|
The European Court of Justice confirms the legal basis of ENISA (i.e. article 95 for establishing the agency of ENISA, as was done in the regulation) |
|
12 May 2006
|
ENISA Changing domain name .europa.eu |
|
31 May 2006
|
Communication Strategy of the Commission on Information Security envisages an increased role for ENISA in the field of data collection to handle security incidents and measured levels of consumer confidence from all over Europe by developing a trusted partnership with Member States and stakeholders. And to examine the feasibility of a multilingual information sharing and alert system. |
|
2 June 2006
|
Permanent Stakeholders Group Vision for ENISA and future risk and threats analysis is presented as an input for the ED and Management Board |
|
16 June 2006
|
First informal Management Board – Permanent Stakeholders Group workshop meeting |