ENISA was originally established in March 2004. The purpose was to support the European Union's ability to manage and maintain its communications networks, and to ensure a high and effective level of network and information security within the EU. ENISA's original mandate was for five years, subsequently extended until September 2013. This has now been extended until 2020 in line with the EU's own long term budget.
A political agreement for the extension was achieved in January 2013, and formally endorsed by Ministers in February. On 16 April it was voted through Parliament. "Today's vote offers a new start for a new Enisa: with expanded tasks, a more agile and efficient organization and governance," commented European Commission Vice-President Neelie Kroes. "This will help secure European networks and information systems, in line with our cybersecurity strategy."
New roles include to "regularly assess, in cooperation with the Member States and the European institutions, the state of network and information security in Europe," and to "assist the EU and the Member States in promoting the use of risk management and security good practice and standards for electronic products, systems and services."
"Under the recently proposed EU Cybersecurity Strategy and NIS Directive, ENISA will have a key role in ensuring cybersecurity and establishing Network and Information Security (NIS) standards to support an internationally competitive NIS industry," announced the EC in a statement yesterday.
“With this new mandate," said ENISA executive director, Professor Udo Helmbrecht, "ENISA is able to fully support the EU’s Cyber Security Strategy, envisaging a reinforced role for ENISA, with the intention to increase resources to help protect Europe’s digital society and economy. The Strategy is also providing ENISA with a framework for working more closely with and providing its expertise to other EU bodies, like Europol, who are operationally responsible for cyber-crime, and the European External Action Service, regarding cyber security at a global level.”