NIS2 - How to implement the policy correctly

The NIS-2 directive imposes stricter IT security requirements on companies, particularly in industry.

New sectors such as manufacturing, telecommunications and logistics are affected and must implement higher security standards and report incidents more quickly. Find out how to implement the directive correctly here.

  • NIS2

EU directives on network and information security

NIS2 - How to Implement the Policy Correctly

The Network and Information Security Directive (NIS) is an EU directive that aims to improve cyber security and the resilience of network and information systems in the European Union. 
The NIS-2 Directive (Directive (EU) 2022/2555) came into force on January 16, 2023, and member states had until October 17, 2024, to implement it into national law. These are the most important changes that result from the incorporation of the NIS-2 regulation into national law:

  • Expanded scope of application: The NIS 2 Regulation covers more sectors and companies, including medium and small-sized companies in certain high-risk sectors. Newly added sectors include, for example, waste management, public administration, space travel and the manufacture of certain critical products.
  • Higher security requirements: Companies must implement stricter technical and organizational measures to protect their network and information systems. This includes, among other things, protecting against cyber attacks, ensuring business continuity and minimizing risks.
  • Improved reporting requirements: The regulation introduces more precise and stringent reporting requirements. Companies must report cyber incidents on a preliminary basis within 24 hours of discovery and then submit a detailed report within 72 hours.
     
  • Stronger enforcement mechanisms and sanctions: The NIS 2 Regulation provides for tougher sanctions for non-compliance with the security requirements. This can result in significant fines. National authorities are given more powers to enforce the rules and monitor companies.
  • Risk management and reporting: Companies must conduct regular risk assessments and implement appropriate security measures. They must also report regularly on their security posture and incidents.

What you should do now

8 Measures for the Implementation of the NIS2 Directive

Click on the individual measures to get more details on the implementation of the NIS2 directive.

Do you need support with implementing NIS2?

These are our services: 
 

  • Inventory: We identify vulnerabilities in your networks.
  • Security concepts & implementation: From planning to technical implementation – we ensure that your IT/OT infrastructure meets the new security standards.
  • Continuous support: With our proactive monitoring and maintenance, we ensure that your systems always meet the current requirements of the NIS-2 guideline.

Do you need support with your project? Contact us now!

We look forward to your inquiry!

Go to contact persons