Cyber Europe 2016: After Action Report

Cyber Europe 2016 was the fourth pan-European cyber crisis exercise organised by the European Union Agency for Network and Information Security (ENISA). Over 1 000 participants working mostly in the ICT sector, from public and private organisations from all 28 Member States of the European Union and two from the European Free Trade Association (EFTA), joined in a programme of activities ranging from training sessions and communication checks to technical competitions and cooperation exercises. The exercise simulated a realistic crisis build-up over an actual period of 6 months, culminating in a 48 hour event on 13 and 14 October 2016. Cyber Europe 2016 was based on three pillars essential to the successful mitigation of large-scale crises caused by cybersecurity incidents: cooperation at national and international levels and sound cybersecurity capabilities. First, the exercise fostered cooperation between targets of simulated cybersecurity incidents, security providers and national authorities, shedding light on national-level public–private and private–private cooperation. Participants had to follow existing business processes, agreements, communication protocols and regulations to mitigate effectively the situations presented to them. Such mechanisms were not always in place for all participants, which hindered the overall ability to reach full EU-level situational awareness. The EU network and information security directive identifies many of the associated shortcomings and proposes measures that ENISA and Member States are already implementing to improve the situation.

Full Report Here

 

 

Source: The Eu Cyber Security Agency