About NIS2

Expanded Scope: NIS2 covers a broader range of sectors and services, including energy, transport, healthcare, banking, digital infrastructure, public administration, and other important sectors.

Stricter Security Requirements: Organizations must implement and maintain stricter security measures to protect their networks and information systems against cyber threats.

Enhanced Cooperation and Coordination: The directive promotes better cooperation between member states and relevant authorities, including the sharing of threat and incident information.

Incident Reporting: Organizations are required to report cyber incidents that could have a significant impact on the services they provide to national competent authorities within prescribed timeframes.

Supply Chain Risk Management: The directive emphasizes the security of the entire supply chain and requires organizations to pay attention to cybersecurity risks associated with third parties.

Strengthened Supervision and Enforcement: NIS2 strengthens the powers of national supervisory authorities, enabling them to conduct audits, impose sanctions, and take other measures to ensure compliance with the regulations.