Call to Anytime
+44 (0) 1959 576 825
IS360
back to top

NIS2 – Are you affected ?

sec-title-s-1
NIS2 – Are you affected ?

What is NIS2?

NIS2 stands for the “Network and Information Systems Directive 2.” It’s the successor to NIS1, which was the first EU-wide legislation addressing cybersecurity. NIS2 aims to enhance the overall security posture of critical infrastructure and essential services across the European Union.

75938

Importance of NIS2

Broader Scope: Unlike its predecessor, NIS2 casts a wider net. It applies not only to essential entities (those providing critical services like energy, transport, and healthcare) but also to important entities (such as financial institutions and telecommunications companies). Approximately 160,000 organizations fall under its purview.

Stringent Security Requirements: NIS2 introduces specific security requirements, covering areas like risk management, incident detection and response, and information security awareness and training.

Incident Reporting: Organizations are now obligated to report cybersecurity incidents to the authorities. This facilitates tracking threats and coordinating responses to major incidents.

Enforcement with Teeth: NIS2 means business. It imposes administrative fines of up to €10 million or 2% of an entity’s global turnover (whichever is higher) for essential entities. Important entities face slightly lower fines—€7 million or 1.4% of global turnover. These fines are in addition to any penalties under GDPR rules.

Key Requirements

Risk management

Organizations must implement robust risk management practices to identify and mitigate cybersecurity risks.

Corporate Accountability

Entities need to take ownership of their cybersecurity posture, ensuring compliance with NIS2 requirements.

Reporting Obligations

Incident reporting is mandatory. Organizations must promptly notify relevant authorities of any significant cybersecurity incidents.

Business Continuity

NIS2 emphasizes the need for continuity planning to ensure services remain available during and after cyber incidents

Contact Us Today To Get Compliant

Contact Us
service-men-1-1
service-shape

What Business are affected ?

The Network and Information Security Directive 2 (NIS2) primarily affects operators of essential services (OES) and digital service providers (DSPs) within the European Union.

DSPs cover online marketplaces, online search engines, and cloud computing services. These businesses are required to implement appropriate security measures to protect their networks and information systems from cyber threats under NIS2 regulations.

Business sectors directly impacted by NIS2 are:

Energy companies

Transport companies

Healthcare providers

Drinking water suppliers

Banking and financial institutions

Financial market infrastructures

Digital infrastructure providers

Cloud computing service providers

Online marketplaces

Online search engines

footer-shape
earth-footer

ABOUT

For any inquiries, feel free to reach out to us, and our team will be happy to assist you.

LINKS

Gallery

1 2 3 4 5 6

CONTACT

footer-1-1

© Copyright by Electronic Workplace