Dimitris Tsiodras has raised a question to the European Commission regarding measures to strengthen the European Union Agency for Cybersecurity (ENISA), headquartered in Athens with an office in Heraklion, Crete. Specifically, he inquires whether the Commission is considering increasing ENISA’s funding to better enable the agency to fulfill the new responsibilities assigned to it.

ENISA has operated for 21 years, during which it has made significant contributions to countering cyber-attacks, maintaining a high level of cybersecurity, and enhancing the EU’s overall resilience.

Tsiodras emphasizes the critical need for ENISA to have sufficient capacity to address growing challenges and expanded duties, including coordinating responses to cyber crises, overseeing cybersecurity certification for critical infrastructure, and ensuring uniform application of cybersecurity standards throughout the Single Market.

The Member of the European Parliament and spokesperson for the New Democracy Eurogroup highlights the increasing frequency of large-scale cyber-attacks targeting the EU. The economic cost of cybercrime is projected to exceed €10 trillion globally by 2025. He notes that 20% of these attacks are directed at public administration organizations, followed by transport (11%), financial services (9%), digital infrastructure (9%), business services (8%), and manufacturing (6%).

Tsiodras concludes by stressing the urgency of strengthening ENISA’s mandate in line with the new tasks imposed by recent cybersecurity legislation.

Text of the Question Submitted to the Commission

Subject: Strengthening the Funding and Mandate of the European Union Agency for Cybersecurity (ENISA)

The EU is facing an increasing number of large-scale cyber-attacks, with the economic cost of cybercrime expected to exceed €10.5 trillion worldwide by 2025.

To illustrate, 20% of these attacks target public administration organizations, followed by transport (11%), financial services (9%), digital infrastructure (9%), business services (8%), and manufacturing (6%).

The European Union Agency for Cybersecurity (ENISA), based in Athens, plays a vital role in countering these attacks, ensuring a high level of cybersecurity, and reinforcing the EU’s resilience.

ENISA must have the capacity to adapt to growing challenges and tasks, such as coordinating responses to cyber crises, overseeing cybersecurity certification for critical infrastructure, and ensuring the uniform application of cybersecurity standards across the Single Market.

In light of the above, will the Commission please clarify:

1. How does it intend to strengthen ENISA’s mandate, considering the new tasks assigned under recent cybersecurity legislation?
2. Is it considering increasing ENISA’s funding to enable the agency to carry out its role more effectively?