-
Image
-
Publish in core platform
No
-
URL
https://www.enisa.europa.eu/publications/the-enisa-cybersecurity-exercise-methodology
-
Link text
The ENISA Cybersecurity Exercise Methodology
-
Link Type
Skills Intelligence publication url
-
Target audience
Digital skills for the labour force.Digital technology / specialisation
CybersecurityDigital skill level
BasicGeographic Scope - Country
European UnionIndustry - Field of Education and Training
Generic programmes and qualifications not further definedTarget language
Type of initiative
EU institutional initiative
Event setting
Publication type
General guidelines
Artificial Intelligence Index report 2026 April 22, 2026
OECD Digital Education Outlook March 20, 2026
The State of AI in the Enterprise 2026 report by Deloitte March 10, 2026Skip to content
Malta Digital Skills and Jobs Platform (LISP)
Developed by ENISA, the methodology presents a systematic and evidence-informed approach to cybersecurity exercises, treating them as instruments for structured inquiry into organisational preparedness rather than standalone training activities. It is intended for institutions seeking to examine response capacities, coordination mechanisms and compliance under controlled but realistic conditions.
The framework is organised into six sequential phases:
-
Initiation
-
Design
-
Preparation
-
Execution
-
Evaluation
-
Follow-up
Each phase builds on the previous one, ensuring that objectives, scope, participants and scenarios are explicitly defined and methodologically consistent, while decision checkpoints help maintain internal validity and feasibility.
The final phase focuses on knowledge transfer and iterative improvement. Findings are disseminated to relevant stakeholders and converted into actionable recommendations, reinforcing a feedback loop in which exercises contribute cumulatively to organisational learning, policy refinement and long-term cybersecurity maturity.
