The Network and Information Systems (NIS)
DIRECTIVE (EU) 2022/2555 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL, of December 14, 2022, on measures for a high common level of cybersecurity throughout the Union, amending Regulation (EU) No 910/2014 and the Directive
The NIS2 Directive is part of the broader EU strategy to enhance cybersecurity across the EU. Cybersecurity threats, including cybercrime, cyber espionage, and cyber attacks on critical infrastructure, are becoming more frequent and sophisticated, with significant consequences for individuals, businesses, and governments. The EU recognizes that cybersecurity is crucial for ensuring the stability and resilience of its economy, society, and democracy. The NIS2 Directive aims to address these cybersecurity challenges by establishing a comprehensive legal framework for cybersecurity in the EU. The directive imposes obligations on all providers of critical infrastructure and digital services operating in the EU to implement appropriate technical and organizational measures to manage the risks to the security of their networks and information systems.
Under the new Directive, previously non-obligated entities will be required to implement technical and organizational security measures, report cyber incidents and threats, and undergo inspections, audits, and other requirements of competent authorities. They are obligated to implement technical, operational, and organizational measures to manage risks in their networks and systems and minimize the impact of incidents. Areas to be covered include incident handling, business continuity, and secure authentication.
By October 2024, NIS2 will be transposed into law. By that deadline, the categorization of entities by sectors will also be carried out, with each entity receiving notification of their assigned competent CERT and additional information. Within 2 years, compliance reports must be submitted, detailing actions taken to ensure compliance.
BCCServices understands the dynamism of the business environment and is always ready to adapt to changes to ensure our partners achieve the best results. With a broad portfolio of products and services and an exceptional team of experts possessing a wide range of skills, we can assist you in preparing for compliance with the NIS2 Directive.
Not sure where to start? Feel free to contact us with confidence.