[et_pb_section fb_built=”1″ _builder_version=”4.25.2″ _module_preset=”default” da_disable_devices=”off|off|off” global_colors_info=”{}” theme_builder_area=”post_content” da_is_popup=”off” da_exit_intent=”off” da_has_close=”on” da_alt_close=”off” da_dark_close=”off” da_not_modal=”on” da_is_singular=”off” da_with_loader=”off” da_has_shadow=”on”][et_pb_row _builder_version=”4.25.2″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_column type=”4_4″ _builder_version=”4.25.2″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_text _builder_version=”4.25.2″ _module_preset=”default” text_font_size=”17px” global_colors_info=”{}” theme_builder_area=”post_content”]<\/p>\n
The implementation of appropriate cyber security in industry, public authorities and service providers is one of the greatest challenges of our time. In order to better meet this challenge and protect IT systems from hacker attacks, the European Union has adopted the NIS2 (Network and Information Security) Directive. <\/p>\n
In this blog post, we explain the key measures that companies should take in accordance with the NIS2 Implementation Act.<\/p>\n
<\/p>\n
[\/et_pb_text][et_pb_text _builder_version=”4.25.2″ _module_preset=”default” text_font_size=”16px” global_colors_info=”{}” theme_builder_area=”post_content”]<\/p>\n
NIS 2 is the revised version of the original 2016 NIS Directive and aims to improve the security requirements for network and information systems in the EU and help Member States prevent or mitigate the impact of cyber threats. NIS 2 was adopted in December 2022 and must be transposed into national law by the EU member states by October 17, 2024. <\/p>\n
<\/p>\n
[\/et_pb_text][et_pb_text _builder_version=”4.25.2″ _module_preset=”default” text_font_size=”16px” global_colors_info=”{}” theme_builder_area=”post_content”]<\/p>\n
One of the most significant changes in NIS 2 is the extended scope of application. While the original NIS Directive only covered certain sectors (critical infrastructure such as energy, transport and health), NIS 2 now covers a broader range of sectors, including medium-sized companies that are considered essential to the economy and society. This includes, for example, the food industry, mechanical engineering, IT service providers and the public sector. <\/p>\n
<\/p>\n
NIS 2 specifies stricter security requirements for companies and organizations. These requirements include, among other things: <\/p>\n
<\/p>\n
Supervision of compliance with the NIS 2 Directive will be tightened. National authorities will be given extended powers to check and enforce the directive. Non-compliance could result in significant penalties. This is intended to ensure that companies take the requirements seriously and actively take measures to improve their cyber security. <\/p>\n
<\/p>\n
[\/et_pb_text][et_pb_text _builder_version=”4.25.2″ _module_preset=”default” text_font_size=”16px” global_colors_info=”{}” theme_builder_area=”post_content”]<\/p>\n
NIS 2 lays the foundations for improving cyber security in the EU. By expanding the scope of application and the institutions affected by NIS2, introducing stricter security requirements and monitoring them by national supervisory authorities, the directive is intended to help increase resilience to cyber threats. At the same time, companies should be prepared to continue business operations, at least in an emergency, in the event of a cyberattack. <\/p>\n
For the affected companies and organizations, this means that they must continuously rethink their existing security strategies and adapt them on a risk-based basis in order to meet the requirements of NIS 2.<\/p>\n
Time is of the essence, the deadline for the introduction of NIS2 as applicable law is October 24, 2024. ADVASO helps you to meet the legal requirements. <\/p>\n
<\/p>\n
Interesting external links on the topic:<\/strong><\/p>\n Information from the BMI on the draft law<\/a><\/p>\n