Article 18 Report on the state of cybersecurity in the Union
1. ENISA shall adopt, in cooperation with the Commission and the Cooperation Group, a biennial report on the state of cybersecurity in the Union and shall submit and present that report to the European Parliament. The report shall, inter alia, be made available in machine-readable data and include the following:
(a) a Union-level cybersecurity risk assessment, taking account of the cyber threat landscape;
(b) an assessment of the development of cybersecurity capabilities in the public and private sectors across the Union;
(c) an assessment of the general level of cybersecurity awareness and cyber hygiene among citizens and entities, including small and medium-sized enterprises;
(d) an aggregated assessment of the outcome of the peer reviews referred to in Article 19;
(e) an aggregated assessment of the level of maturity of cybersecurity capabilities and resources across the Union, including those at sector level, as well as of the extent to which the Member States' national cybersecurity strategies are aligned.