The EU’s cybersecurity agency, ENISA, announced on Monday (13 November) that it will work with Ukraine to enhance cybersecurity by exchanging best practices, information sharing, and capacity-building.
In its announcement, it signalled that it had formed a working arrangement with Ukraine. The arrangement focuses on exchange in three domains: best practices, information sharing and capacity building.
Signing partners include Juhan Lepassar, ENISA’s Executive Director, Oleksiy Danilov, Secretary of the National Security and Defense Council of Ukraine, and Yurii Shchyhol, the Chairman of State Service of Special Communications and Information Protection of Ukraine (SSSCIP).
“Joining our efforts will strengthen the European cybersecurity system, and Ukraine will participate in the formation of strategic approaches and development of new policies in the field of cybersecurity and cyber defence at the international level,” Danilov said.
The working arrangement also plays a key role in the EU-Ukraine Cybersecurity Dialogue.
A key element of the Cybersecurity Dialogue is strengthening cyber resilience efforts and cooperation between Ukraine and the bloc.
“The EU countries will learn above all from Ukrainian knowledge and information sharing,” Valentin Weber, Research Fellow at DGAP’s Centre for Geopolitics, Geo-economics and Technology, told Euractiv.
“In any case, it has potential,” the expert concluded.
Ukraine’s first-hand expertise
In light of Russia’s war of aggression, the current threat situation in Ukraine includes numerous cyberattacks on Ukraine’s critical information infrastructure.
“Ukraine is probably the country that currently has the most comprehensive knowledge of Russian cyber operations and threats,” Weber added.
Close cooperation with the EU and international stakeholders has been effective insofar that Ukraine was able to build capacities in cyberspace and defend against cyberattacks on critical infrastructure.
“The widespread use of cyberattacks in Russia’s war of aggression has been met with a fierce defence by our Ukrainian partners. It has also greatly increased our own levels of alertness and preparations in the EU,” said Juhan Lepassaar, ENISA’s Executive Director.
EU standard setting
“Ukraine, in turn, will benefit from assistance in adapting to European regulatory standards, such as NIS2,” Weber told Euractiv, in reference to the revised Networks and Information System Directive, which extends cybersecurity requirements for enterprises. EU member states have until October next year to integrate the directive into national law.
Last Wednesday, the EU recommended opening accession talks with Ukraine, partially based on its results of “the ongoing reform efforts”. For this to happen, Kyiv still needs several conditions to align with EU standards.
[Edited by Luca Bertuzzi/Nathalie Weatherald]
Read more with EURACTIV