This multilateral Memorandum of Understanding formalizes ongoing discussions to strengthen the already close cooperation between ESA and ENISA as a result of the Directive on High Common Levels of Cybersecurity Measures (NIS2 Directive) and the Digital Operational Resilience Act (DORA).
The MoU sets out a framework for cooperation and information exchange on tasks of mutual interest, including policy implementation, incident reporting, and oversight of critical information and communications technology (ICT) third-party providers. It also promotes regulatory convergence, fosters inter-sectoral learning and capacity-building in areas of mutual interest, and facilitates information exchange on emerging technologies.
Verena Roth, Chair of the ESA Joint Committee and President of ESMA, said: The new cooperation agreement signed today strengthens cooperation between ESA and ENISA. By bringing together ESA and ENISA, the EU cybersecurity agency, to tackle cybersecurity risks in the financial sector, we will further strengthen our efforts to protect the financial system against information security risks.
In an interconnected world, ICT risks are not limited to specific geographic or sectoral areas, making cooperation in this area critical. By fostering collaboration and sharing of resources, we will continually strengthen our ability to detect and respond to cybersecurity threats.
Juhan Lepassaar, Executive Director of the European Union Cyber Security Agency (ENISA), emphasized: The MoU signed today demonstrates our willingness to promote a common and comprehensive approach to cybersecurity at both sectoral and horizontal levels. The implementation and harmonization of NIS2 and DORA provisions, such as incident reporting, will pave the way for strengthening efforts towards building robust mechanisms for cybersecurity in financial ICT systems.
Notes to editors
The NIS2 Directive is an EU-wide cybersecurity law that sets out legal measures to raise the level of cybersecurity across the EU.
The Digital Operational Resilience Act (DORA) sets out a uniform and comprehensive regulatory framework on digital operational resilience for EU financial institutions and introduces oversight of Critical Third Party ICT Providers (CTPPs).
About ENISA
The European Union Cybersecurity Agency (ENISA) is a union agency whose aim is to raise the common level of cybersecurity across Europe. Founded in 2004 and strengthened by the EU Cybersecurity Act, ENISA contributes to EU cyber policy, promotes trust in ICT products, services and processes through its cybersecurity certification schemes, cooperates with Member States and EU institutions and helps Europe prepare for future cyber challenges. Through knowledge sharing, capacity building and awareness raising, the Agency works with key stakeholders to strengthen trust in the connected economy, increase the resilience of the EU's infrastructure and ultimately maintain the digital security of European societies and citizens.
About ESA
The three European supervisory authorities (EBA, EIOPA, ESMA) aim to protect the public interest by contributing to the short-, medium-, and long-term stability and effectiveness of the financial system for the EU economy, citizens, and businesses. The ESAs are tasked with developing and implementing a common regulatory framework and integrated supervisory practices across the EU. While most ongoing supervision of financial institutions remains the responsibility of national supervisors, the ESAs also carry out micro-prudential supervision of EU financial markets together with national supervisors in their member states, and directly supervise some market participants.
Through the Joint Committee, the three ESAs regularly and closely coordinate their supervisory activities within their respective areas of responsibility to ensure consistency in their practice. The three ESA Joint Committees are chaired by one of the authorities on an annual basis in alternating periods. In 2024, the Forum will be chaired by ESMA.
To stay up to date, subscribe to the RSS feed for both ENISA news items and press releases.
News items:
http://www.enisa.europa.eu/media/news-items/news-wires/RSS
PR:
http://www.enisa.europa.eu/media/press-releases/press-releases/RSS
