Press release: RIA has published a comprehensive compendium “Cyber Security in Estonia 2020”

The Estonian Information System Authority (RIA) has compiled a comprehensive overview of cyber security in Estonia.

Press release
12 May 2020

“Cyber Security in Estonia 2020”, available at, explains the landscape, the responsibilities and activities of different public sector organizations in Estonia who all contribute to keep Estonians safe online. From setting up a cyber security standard to combating cyber crime to training military cyber defence operators, every agency has a vital role to play.

“In the past few years it has become increasingly clear that securing our digital way of life needs to be a team effort and there is no single agency who can just “fix” cyber security,” said Lauri Aasmann, Director of Cyber Security at the Estonian Information System Authority. “It doesn’t matter if you are responsible for cyber security, information security, cyber defence or data protection, we all depend on each other and we need to know that everyone is doing their part,” Mr. Aasmann added. “It’s an honor to be part of this excellent Estonian team taking on this challenge.”
2020 has undeniably changed the way people work and study over the internet exposing a lot more people to risks in cyberspace. The risks and the threat actors are not novel, but they are now affecting more and more people and businesses. This means that mitigating cyber security risks requires more cooperation not just within one country, but throughout the world.

The compendium “Cyber Security in Estonia 2020” includes an introductory article about the state of international law regarding cyber security by the President of Estonia Kersti Kaljulaid, and an overview of activities related to cyber security by the following agencies and organizations in Estonia:

  • Estonian Information System Authority
  • Estonian Police and Border Guard Board Cybercrime Unit
  • Estonian Internal Security Police
  • Estonian Foreign Intelligence Service
  • Ministry of Foreign Affairs
  • Ministry of Economic Affairs and Communications
  • Ministry of Defence
  • Estonian Defence Forces Cyber Command
  • Estonian Defence League Cyber Defence Unit
  • Data Protection Inspectorate
  • NATO Cooperative Cyber Defence Centre of Excellence
  • Estonian Information Security Association

Every one of these organizations sees cyber security through their own lens – whether the main focus is on the technology, the government-backed threat actors, military operators, careless service providers or cyber criminals. “Cyber Security in Estonia 2020” aims to paint a comprehensive picture at how different branches of government work together to protect Estonians and our friends all around the world.

Some of this content has been published in the yearly assessments of the respective organizations (such as in the annual overviews by the Information System Authority, Internal Security Police or Foreign Intelligence Service). This compilation brings together those viewpoints and assessments to give our foreign audiences a complete overview of cyber security in Estonia.

All chapters in this compendium express the views of the respective institutions. For general inquiries and media requests regarding the publication please contact the Estonian Information System Authority. For specific questions regarding topics discussed in each chapter please contact the institutions directly.
An online webinar ‘Cyber Security in Estonia 2020: What Has Changed’ will be streamed live on RIA’s Facebook page from 5pm to 7pm EEST (4pm CET, 10am EDT) on May 26th. The event will provide an overview of the recent developments in cyberspace by representatives from RIA, the Ministry of Economic Affairs and Communications, the Ministry of Foreign Affairs, the Estonian Police and Border Guard Board, the Government Office, NATO CCDCOE, and Cybernetica. Registration for the webinar will open soon.

Link to the compendium:

If you would like to receive a paper edition of ‘Cyber Security in Estonia 2020’ by mail, please let us know at [email protected].

Keep reading similar articles
EU CyberNet External Cyber Capacity Building training

On 26-28 April, EU CyberNet held its EU External Cyber Capacity Building training for the Western Balkans, Eastern Partnership and Southern Neighbourhood delegations in Istanbul.

By Lauri Aasmann, Training and Services Lead, EU CyberNet
Press release: The new yearbook introduces the work of RIA and the events of 2019 in Estonian cyberspace

The yearbook describes the role of the departments of the Information System Authority (RIA) in the e-state and gives an overview of cyber incidents of 2019 in Estonia.

Information System Authority / By Seiko Kuik, Press Officer, Estonian Information System Authority
Panel: Cyber Resilience Builds on Situational Awareness, Trainings and Exercising

On 18 June the EU CyberNet’s Training and Services Lead Lauri Aasmann took part of the EuRepoC Conference 2024 “Promises & Pitfalls for the EU’s Cyber Foreign and Security Policy” which focused on the attribution capacities of EU and private actors; emerging hybrid threats; the EU’s role in capacity building; and the intricate relation between critical infrastructure protection and conflict resolution in Europe.

Panel: Awareness-raising is a Complex, Non-linear Process Requiring Sustained and Multi-faceted Efforts, and International Cooperation

Liina Areng, Director of EU CyberNet and LAC4, participated in a panel at the Seminar on Security in the Digital Economy, hosted by Brazil under its G20 presidency in São Luís. The panel focused on raising public awareness about digital security.

Sille Arikas: “What it is often missed is that it’s your own paycheck that is on the line in case of falling victim to a cyber-attack that hinders provision of the services””

Mini-interviews with EU CyberNet experts. Sille Arikas has been part of the Expert Pool for 3 years and has contributed to the work of EU CyberNet.

Panel: Cyber Security Implications for Port Infrastructure and Maritime Systems

EU CyberNet hosted a panel discussion at NATO CCD COE conference CyCon2024 “Over the Horizon” focusing on critical sector service provider’s resilience building.