An easy way of publishing your relevant EU press releases.

EU Cyber security agency ENISA launches Guide on building effective IT Security Public Private Partnerships (PPPs)


11 Oct 2011



A new Guide with 36 recommendations on building effective Public and Private Partnerships for resilient IT security was published today by the EU’s network and information security Agency, ENISA.

Across the EU, the critical infrastructure of most member States is in the hands of the private sector. Therefore, to provide secure and reliable system access for citizens and businesses, industry and governments must work together. The critical information infrastructures (CII) in Europe are fragmented, both geographically and because of competition among telecom operators.

To overcome this fragmentation, Public Private Partnerships (PPPs) have evolved to protect the digital economy in many Member States, at different times, and under different legal frameworks. But this natural evolution means that there is no common definition of what constitutes a PPP. In a world where threats to infrastructure do not respect national borders, the European Network and Information Security Agency ENISA’s new PPPs Guide with 36 recommendations on how to successfully build a PPP, underlines the need for a common understanding across Europe. This is of particular importance for the European Public Private Partnership for Resilience (EP3R), a European Union initiative, which is liaising with national PPPs on Critical Information Infrastructure Protection (CIIP) issues.

The Executive Director of ENISA, Professor Udo Helmbrecht, comments: "There is a need for a truly international, global approach to cyber security and Critical Information Infrastructure Protection. No country can create a CIIP strategy in isolation, as there are no national boundaries in cyber-space. PPPs are consequently one of the agenda items for the special EU-US Working Group on Cyber-Security and Cyber-Crime.”

PPP taxonomy

The Guide classifies PPPs for security and resilience in three types: Prevention Focused, Response Focused and Umbrella PPPs. The Guide consolidates and validates a PPP-taxonomy, and gives advice in five main areas:

 Why a PPP should be created (scope/threats)

 Who should be involved (coverage, geographical/focus, interrelated links)

 How a PPP should be governed

 What services and incentives should be offered

 When a PPP should be created and other timing points

The Guide draws on input from 30 questionnaires and 15 in-depth interviews with both public and private sector stakeholders across twenty countries. It also describes and maps PPPs from the USA, Canada and Australia, identifying critical success factors for information sharing, and ways forward for international collaboration.

For full report:

Background: European Commission communication on CIIP and EP3R

For interviews: Ulf Bergstrom, Spokesman, ENISA,, Mobile: + 30 6948 460 143, or Lionel Dupre, Expert, ENISA,


Association for Financial Markets in Europe (AFME)
Executive Assistant
ICLEI Local Governments for Sustainability Europe
Officer - Sustainable Procurement
The Carbon Capture and Storage Association ASBL
Policy and Communication Officer, Brussels (x2)
Ecorys UK
In-house Recruiter
European Network on Cultural Management and Policy (ENCATC)
Communications officer, the EU Human Rights Defenders Mechanism
Project Officer ( Meetings 2022)
E3G (Third Generation Environmentalism)
Researcher, Clean Economy (London/Brussels/Berlin)
Programme Manager – Plastics
Environmental Defense Fund Europe
Sr. Communications Manager, Energy Transition