ABSTRACT
This chapter investigates the involvement of Estonia, a representative example of a small EU member state, within the realm of the EU's cybersecurity policy, an increasingly important domain of non-traditional security. By adopting the concept of critical juncture, this chapter considers the importance of timing when understanding small states’ foreign policy strategies. It is argued that the timing that Estonia chose to proactively participate in the EU's cybersecurity policy-making could be attributed to a window of opportunity provided by a critical juncture, namely the cyberattack against Estonia in 2007. Furthermore, this chapter adopts the term ‘policy entrepreneurship’ to account for Estonia's strategies to enhance its influence on the EU's cybersecurity policy. The chapter argues that in response to the cyberattack in 2007, Estonia has utilized its forerunner reputation, coalition-building capability as well as financial and human resources to leverage its influence on this policy domain.
