Office of the President of Estonia

The Office of the President of Estonia, also known as Vabariigi Presidendi Kantselei, serves as the administrative support structure for the head of state of the Republic of Estonia. Its core function is to ensure the President can to execute constitutional duties, which include representing the state internationally, serving as commander-in-chief of the defence forces, and conferring state decorations and honours. The office facilitates the President's role in the appointment of government officials, including the Prime Minister and judges, and in the exercise of the right to grant pardons. It provides analytical support, draft legislation coordination, and communication management for the presidency. The office operates within Estonia's capital, serving the nation's highest ceremonial and constitutional office, and interacts with domestic government bodies, foreign diplomatic missions, and international organisations on behalf of the President. Its scope is entirely national, focused on supporting the governance and symbolic representation of the Estonian state.

A defining attribute of the Office of the President of Estonia is its demonstrated resilience and preparedness in the face of significant cyber threats, as evidenced by a major incident on 2 July 2022. On that date, the President's official website was targeted by a substantial distributed denial-of-service (DDoS) attack, receiving approximately 40 million malicious requests within hours. This assault followed weeks of prior jamming attempts and occurred within a broader context where cyberattacks against Estonian services had doubled following Russia's invasion of Ukraine. The attack was successfully mitigated without any harm to data or systems, a direct result of enhanced security measures that had been proactively implemented. These measures included specialised spam filters designed to protect nationally important websites, which enabled the effective differentiation between legitimate and malicious traffic. While the attack caused temporary website downtime, the incident confirmed the effectiveness of Estonia's national cybersecurity posture in protecting critical state infrastructure. No data breaches, unauthorised access, or data manipulation occurred, underscoring a high level of operational security. Although authorities noted the involvement of the Russian group KillNet in other recent incidents, attribution for this specific attack remained undetermined. The event highlights the office's integration into a robust national cyber defence framework and the sustained vigilance required for high-profile state entities in the current threat landscape.