[open-regulatory-compliance] ENISA 2025-2027 Programming Document

[Roman Zhukov <rzhukov@xxxxxxxxxx>]

Hi folks,

FYI - ENISA revealed their 2025-2027 Single Programming Document (link: https://www.enisa.europa.eu/sites/default/files/2025-02/17_02_2025_ENISA%20Single%20Programming%20Document%202025-2027.pdf).

Here is what caught my attention:

• Concise mapping of Strategic Objectives across Horizontal (e.g. Empowered communities in an involved and engaged cyber ecosystem) and Vertical (e.g. Building trust in secure digital solutions)
• CRA (Cyber Resilience Act) mentioned 66 (!) times which confirms ENISA as a key player for the coming years
• The full financial and human resource transparency for the past years
• Clear expected outputs (with nice infographics) for all 11 Activities planned 2025-2027
• 9 additional FTE to be hired to support just CRA implementation
• Emphasis on sustainable and environmental goals
• Fantastic to see Supporting European cybersecurity market, research & development and industry as a separate Activity

I mentioned it during the workshop - for us it's very important to work closer with ENISA aligning their EUCC documents with CEN/CENELEC (and local Member State bodies) ongoing work and our (industry) expectations for CRA standardization.

--

Roman Zhukov

Principal Security Community Architect

Red Hat

@redhat   @red-hat  @redhatinc