ENISA: Mapping the key stakeholders and
NIS situation in each EU Member State in its
first edition of ‘Country Reports’
Feb-15-09
The EU Agency ENISA [European Network and Information Security Agency] today launched its
first, comprehensive 600 pages ‘Country Reports’ on the status of Network and Information
Security [NIS] in 30 European Countries, including mapping of stakeholders and trends.
The Country Reports are an assessment of the ongoing and planned activities of NIS in each
Member State. As such, they provide a unique overview of the "state of the art" in NIS in 30
European countries: the 27 European Union Member States and the 3 EEA countries [Iceland,
Lichtenstein and Norway]. Each country chapter contains eg; Country Highlights, Key
Stakeholders Overview, Activities, and Current Trends, eg, focusing on the status of national
electronic ID schemes, and major incidences of security breaches involving loss of data.
The categorization and mapping of stakeholders and their mutual relations was one of the most
important aims of the report. The most important areas in which national-level organizations
have an impact on NIS was charted, i.e: Policy Development: the drafting of, or assistance in
the process of drafting, governmental policies relating to NIS, NIS Policy Implementation,
Privacy and Data Protection, Electronic Communications, CIP/CIIP: Critical Infrastructure
Protection / Critical Information Infrastructure Protection, and [CERT]s: Computer Emergency
Response Team.
The report found, not surprisingly, that institutions and responsibilities vary substantially from
country to country. However, some general trends were identified:
· - The most important actors for defining NIS policies are Governmental Organizations and
Bodies: eg; the Ministry of Communications, the National Regulatory Agency for Electronic
Communications (where established), the National Office for Data Protection, the Ministry of
Interior, Defence, or having shared responsibilities for different a