Sat. Apr 13th, 2024

Editor’s Note: The publication of ENISA’s “Best Practices for Cyber Crisis Management” marks a significant advancement in the EU’s approach to cybersecurity. Amid escalating geopolitical tensions, this comprehensive study offers a strategic blueprint for Member States, emphasizing the importance of preparation, cooperation, and resilience in the face of cyber threats. For professionals in cybersecurity, information governance, and eDiscovery, this report is not just a resource but a call to action. It highlights the evolving nature of cyber threats and the need for an integrated, all-hazards approach to crisis management. As the EU moves towards greater harmonization and enhanced cooperation in cybersecurity, this study serves as a critical tool in navigating the complex cyber threat landscape.

Content Assessment: ENISA Unveils Cyber Crisis Best Practices for the EU

Information - 94%
Insight - 93%
Relevance - 94%
Objectivity - 93%
Authority - 95%



A short percentage-based assessment of the qualitative benefit expressed as a percentage of positive reception of the recent article from ComplexDiscovery OÜ highlighting the publication of ENISA's Best Practices for Cyber Crisis Management.

Industry News – Cybersecurity Beat

ENISA Unveils Cyber Crisis Best Practices for the EU

ComplexDiscovery Staff

Geopolitical Dynamics and the Enhanced Need for Cyber Crisis Management in the EU

As the geopolitical climate continues to evolve, the European Union (EU) faces an escalating need to bolster its cyber crisis management capabilities. The EU Agency for Cybersecurity (ENISA) has taken a proactive step by publishing a comprehensive study titled “Best Practices for Cyber Crisis Management.” This initiative, aimed at assisting the EU Cyber Crisis Liaison Organisation Network (CyCLONe), provides invaluable insights and frameworks for handling cyber crises within the EU. Released on February 28, 2024, the study underscores the importance of preparing for both anticipated and unforeseen cyber threats and incidents.

Juhan Lepassaar, the Executive Director of ENISA, emphasized the critical nature of sharing best practices among Member States to fortify cyber crisis management. He highlighted the study’s role in aiding the implementation of the NIS2 Directive’s provisions, which are crucial for maintaining business continuity during crises. The study meticulously outlines a cyber crisis management cycle divided into four phases: prevention, preparedness, response, and recovery. It suggests an all-hazards approach to address issues at each stage, aiming for a more harmonized ecosystem across the EU.

The backdrop of this study is the EU’s long-standing commitment to cybersecurity, evidenced by the enactment of the NIS2 Directive. This directive represents a significant upgrade from its predecessor, enhancing the role of ENISA in coordinating cybersecurity efforts across the EU. ENISA’s mandate now includes acting as the secretariat for the EU-CyCLONe, fostering cooperation among Member States’ national authorities in managing cyber crises.

The study delves into the complex nature of cyber crises, highlighting the subjectivity involved in elevating a large-scale cyber incident to a crisis status. This elevation often hinges on a political decision and the risk tolerance of the Member States. The document points out the challenges in achieving a unified understanding of what constitutes a cyber crisis within the EU, given the diverse interpretations among Member States.

At the operational level, the study analyzes cyber crisis management around the aforementioned four phases. It recognizes the already effective measures implemented by Member States and suggests further enhancements as they adopt NIS2 and respond to the evolving challenges of cyber crisis management. Notably, the study proposes a series of best practices ranging from the adoption of a national definition of a cyber crisis to the development of communication strategies and the encouragement of private-sector involvement in technical assistance during crises.

ENISA concludes with a set of recommendations aimed at improving the EU’s capacity-building and operational cooperation in cyber crisis management. These include coordinating EU-wide cyber crisis mechanisms, developing simulation exercises, supporting secure communication platforms, updating critical information system maps, and organizing media training sessions for executives.

This study is an example of the EU’s dedication to advancing its cybersecurity infrastructure, ensuring a coordinated and robust response to cyber crises. The collaborative effort symbolized by the EU-CyCLONe and the strategic guidance provided by the NIS Cooperation Group pave the way for a more secure and resilient EU in the face of growing cyber threats.

News Sources

Assisted by GAI and LLM Technologies

Additional Reading

Source: ComplexDiscovery OÜ


Have a Request?

If you have information or offering requests that you would like to ask us about, please let us know, and we will make our response to you a priority.

ComplexDiscovery OÜ is a highly recognized digital publication focused on providing detailed insights into the fields of cybersecurity, information governance, and eDiscovery. Based in Estonia, a hub for digital innovation, ComplexDiscovery OÜ upholds rigorous standards in journalistic integrity, delivering nuanced analyses of global trends, technology advancements, and the eDiscovery sector. The publication expertly connects intricate legal technology issues with the broader narrative of international business and current events, offering its readership invaluable insights for informed decision-making.

For the latest in law, technology, and business, visit


Generative Artificial Intelligence and Large Language Model Use

ComplexDiscovery OÜ recognizes the value of GAI and LLM tools in streamlining content creation processes and enhancing the overall quality of its research, writing, and editing efforts. To this end, ComplexDiscovery OÜ regularly employs GAI tools, including ChatGPT, Claude, Midjourney, and DALL-E, to assist, augment, and accelerate the development and publication of both new and revised content in posts and pages published (initiated in late 2022).

ComplexDiscovery also provides a ChatGPT-powered AI article assistant for its users. This feature leverages LLM capabilities to generate relevant and valuable insights related to specific page and post content published on By offering this AI-driven service, ComplexDiscovery OÜ aims to create a more interactive and engaging experience for its users, while highlighting the importance of responsible and ethical use of GAI and LLM technologies.