Apart from tackling cyber security risks, a strategy builds on collaboration. Some of the most important settings to improve collaboration between stakeholders is Information Sharing and the creation of Public-Private Partnerships.
A public – private partnership (PPP) is a long – term agreement/ cooperation/ collaboration between two or more public and private sectors that has developed through time in many areas.
European legislation like the Cybersecurity Strategy of the European Union: An Open, Safe and Secure Cyberspace and Joint Communication on Resilience, Deterrence and Defence: Building strong cybersecurity for the EU, encourage the need for private-public cooperation in the field of cybersecurity as well as the importance of trust building through public-private partnerships.
ENISA has worked towards this direction offering incentives and actual recommendations on how to setup and run a PPP:
- Public Private Partnerships (PPP) - Cooperative models
- EP3R 2009-2013 Future of NIS Public Private Cooperation
- Good Practice Guide on Cooperative Models for Effective PPPs
- Desktop Research on Public Private Partnerships
Public Private Partnerships (PPP) - Cooperative models
In 2017, ENISA conducted a study on Cooperative Models for Public Private Partnership (PPP) collating information on best practices and common approaches. This research analyses the current status of PPPs in the EU as wells as identify the main models of collaboration, the current challenges that both private and public sector face in the process of setting up and developing PPPs and provides recommendations for the development of PPP in Europe.
The main objectives of this study are:
- To provide information about PPPs in Europe through collecting information and analysing the current status of PPP and to identify main models of this type of collaboration.
- To identify current challenges that both the private and public sector face in the process of setting up and developing PPPs.
- To formulate and propose recommendations for the development of PPPs in Europe
EP3R 2009-2013 Future of NIS Public Private Cooperation
Cooperation in the form of PPPs has evolved in many Member States depending on the environment, culture and legal framework. The need for a European view is demonstrated by the European Public Private Partnership for Resilience (EP3R) that is engaging with National PPPs to address Critical Information Infrastructure Protection (CIIP) issues at European level.
Good Practice Guide on Cooperative Models for Effective PPPs
In 2011, ENISA has published a good practice guide and a desktop research on Cooperative Models for Effective Public Private Partnership (PPP), in order to collect from the experiences of existing PPPs and to identify best practices to support those countries who are establishing a well-formed partnership for the first time or are experiencing barriers and looking for an advice.
This Good Practice Guide helps stakeholders to easily choose those aspects that will add value to their endeavours in setting up and running PPPs. The Guide identifies a list of issues which existing PPPs have addressed and the Good Practice observed in addressing these issues. To this end, 36 recommendations are included in the Guide on how to build successfully Public Private Partnerships for resilient IT security.