NIS2 - What You Need To Do Now

The NIS2 Directive aims to enhance the cybersecurity of EU critical infrastructure entities through two main pillars: Duty of Care and Duty to Report. Organizations are required to implement robust risk management measures and establish processes for reporting significant security incidents. Non-compliance can result in substantial fines and potential suspension of business operations for essential and important entities.

Uploaded by

czr0crs

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

66 views9 pages

NIS2 - What You Need To Do Now

Uploaded by

czr0crs

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 9

ARE YOU READY FOR NIS2?

WHO IS AFFECTED?
NIS2 IS HERE
The Network Information
Security Directive (NIS2) is
designed to strengthen the
cybersecurity posture of EU
critical infrastructure entities or
industries to meet basic
compliance requirements.
IN A NUTSHELL
The NIS2 directive is built on
two main pillars to strengthen
cybersecurity and overall
resilience...

Duty of Care
Duty to Report
DUTY OF CARE
Organizations must implement
strong risk management and
business continuity measures to
reduce cyber risks
risks.. This includes
incident management, supply
chain security, enhanced
network and access control,
encryption, system recovery,
emergency procedures, and a
crisis response team.
DUTY TO REPORT
Essential entities must set up
processes to quickly report
significant security incidents
incidents,,
including a 24-hour ‘early
warning’ system.
NIS2 emphasizes corporate
accountability, requiring
management to be involved in
and knowledgeable about
cybersecurity measures
measures..
CONSEQUENCES
Under the NIS2 Directive,
companies are required to
improve cybersecurity
cybersecurity,,
communicate with supervisory
authorities, and transparently
report breaches.

Fines vary for "Essential" and

"Important" entities.
FINES
Essential Ent
Entities
ities could face
fines up to €10 million or 2%
of total turnover
Important Entities could face
fines of up to €7 million or
1.4% of total turnover.
Regulators may suspend
business operations if critical
to network security.
WHO IS AFFECTED?
Essential Entities (EE)
Size threshold: varies by sector,
but generally 250 employees,
annual turnover of € 50 million,
or balance sheet of € 43 million.
Energy
Transport
Finance
Public Administration
Health
Space
Water supply (drinking & wastewater)
Digital Infrastructure
WHO IS AFFECTED?
Important Entities (IE)
Size threshold: varies by sector,
but generally 50 employees,
annual turnover of € 10 million
or balance sheet of € 10 million.
Postal S
Services
ervices
Waste Management
Chemicals
Research
Foods
Manufacturing
e.g. medical devices and other equipment
Digital Providers

NIS2 - Directive-101-Chart
No ratings yet
NIS2 - Directive-101-Chart
1 page
NIS2 Presentation
No ratings yet
NIS2 Presentation
77 pages
Nis2 Cheat Sheet 1725167156
No ratings yet
Nis2 Cheat Sheet 1725167156
8 pages
IT Strategy Framework Overview
No ratings yet
IT Strategy Framework Overview
9 pages
ISO27k Model Policy On Change Management and Control
No ratings yet
ISO27k Model Policy On Change Management and Control
10 pages
Cyber Security GRC Roles
No ratings yet
Cyber Security GRC Roles
20 pages
OSDBU Acquisition Forecast - July 2024
No ratings yet
OSDBU Acquisition Forecast - July 2024
1,815 pages
Isms Training
No ratings yet
Isms Training
61 pages
Control Control Requirements: Statement of Applicability
No ratings yet
Control Control Requirements: Statement of Applicability
3 pages
CPRT CSF 2 0 0 11-13-2024
No ratings yet
CPRT CSF 2 0 0 11-13-2024
17 pages
CISSP Domain 2 Asset Security Detailed
No ratings yet
CISSP Domain 2 Asset Security Detailed
32 pages
ISO27002 2022 Gap Assessment Tool
No ratings yet
ISO27002 2022 Gap Assessment Tool
10 pages
Iso/Iec 27001 Solution Brief: Eventtracker
No ratings yet
Iso/Iec 27001 Solution Brief: Eventtracker
8 pages
The Zero Trust EXtended Security Maturity Assessment
No ratings yet
The Zero Trust EXtended Security Maturity Assessment
38 pages
VERITY Brochure
No ratings yet
VERITY Brochure
6 pages
NIST Questions For Admin Rights Users - Blank
No ratings yet
NIST Questions For Admin Rights Users - Blank
12 pages
Cyber Incident Response Checklist
No ratings yet
Cyber Incident Response Checklist
8 pages
Vulnerability Management Procedure
No ratings yet
Vulnerability Management Procedure
13 pages
CIS Controls v8 Mapping To UK NCSC Cyber Assessment Framework v3.1 - 8-16-2022
No ratings yet
CIS Controls v8 Mapping To UK NCSC Cyber Assessment Framework v3.1 - 8-16-2022
115 pages
Cloud Controls Matrix Template (December 2024)
No ratings yet
Cloud Controls Matrix Template (December 2024)
36 pages
Security and Privacy Control Collaboration Index Template
No ratings yet
Security and Privacy Control Collaboration Index Template
36 pages
ECC Control Implementation Tracker LIST
No ratings yet
ECC Control Implementation Tracker LIST
6 pages
Vendor Risk Assessment
No ratings yet
Vendor Risk Assessment
6 pages
Lean Management of IT Organizations A Pe
No ratings yet
Lean Management of IT Organizations A Pe
12 pages
A719552767 - 24968 - 24 - 2019 - ppt4 Info Risk
100% (1)
A719552767 - 24968 - 24 - 2019 - ppt4 Info Risk
30 pages
CIAM Program Overview-V2
No ratings yet
CIAM Program Overview-V2
6 pages
A Model For The Lean IT Organization - Mark McDonald
No ratings yet
A Model For The Lean IT Organization - Mark McDonald
5 pages
IT Access Control Policy V1.4
No ratings yet
IT Access Control Policy V1.4
9 pages
FedRAMP Continuous Monitoring Deliverables Template
No ratings yet
FedRAMP Continuous Monitoring Deliverables Template
4 pages
ICS SICS Framework Infographic
100% (1)
ICS SICS Framework Infographic
1 page
It Security Incidents Checklists
100% (2)
It Security Incidents Checklists
1 page
Information Security Management Guide
No ratings yet
Information Security Management Guide
27 pages
Iso 27001 Business Continuity Checklist: Your Logo
No ratings yet
Iso 27001 Business Continuity Checklist: Your Logo
10 pages
Information Security-Policy-Template
No ratings yet
Information Security-Policy-Template
3 pages
ITGC
No ratings yet
ITGC
11 pages
Information-Security-Policy-Public-Version - Globenet
No ratings yet
Information-Security-Policy-Public-Version - Globenet
27 pages
CIS Controls V7.1: Cybersecurity Guide
No ratings yet
CIS Controls V7.1: Cybersecurity Guide
5 pages
CRISC Mindmaps CheatSheets
No ratings yet
CRISC Mindmaps CheatSheets
2 pages
CIS Controls Measures and Metrics V7
No ratings yet
CIS Controls Measures and Metrics V7
5 pages
Risk Analysis Template 05
No ratings yet
Risk Analysis Template 05
20 pages
Cybersecurity Maturity for Banks
No ratings yet
Cybersecurity Maturity for Banks
19 pages
CIS Controls v8.1 Implementation Groups 2024 06
No ratings yet
CIS Controls v8.1 Implementation Groups 2024 06
4 pages
Information Asset Register For Early Years Settings - Template
No ratings yet
Information Asset Register For Early Years Settings - Template
144 pages
STANDARD Asset Classification Template en
No ratings yet
STANDARD Asset Classification Template en
12 pages
Module 7 Assignment
No ratings yet
Module 7 Assignment
13 pages
ISO27k Model Policy On Security Awareness and Training
100% (1)
ISO27k Model Policy On Security Awareness and Training
4 pages
Battle Card Email Sec Vs Mimecast
No ratings yet
Battle Card Email Sec Vs Mimecast
5 pages
Sacramento State Level 1 Systems Access Review Template
No ratings yet
Sacramento State Level 1 Systems Access Review Template
4 pages
A Physical Security Guide To Nerc Cip Compliance
No ratings yet
A Physical Security Guide To Nerc Cip Compliance
25 pages
IT Governance and Control
No ratings yet
IT Governance and Control
15 pages
IT Strategy in Network Economy
No ratings yet
IT Strategy in Network Economy
15 pages
RFP Solicitation Document Assignment
No ratings yet
RFP Solicitation Document Assignment
7 pages
Penetration Testing Service Guide
No ratings yet
Penetration Testing Service Guide
3 pages
Cybersecurity Assessment Guide
No ratings yet
Cybersecurity Assessment Guide
26 pages
Isc2 Cissp 1 13 1 Threat Modeling Concepts and Methodologies
No ratings yet
Isc2 Cissp 1 13 1 Threat Modeling Concepts and Methodologies
2 pages
Cobit in Relation To Others International Standards
No ratings yet
Cobit in Relation To Others International Standards
4 pages
ISO 27001 Checklist A Step by Step Guide Hicomply v2
No ratings yet
ISO 27001 Checklist A Step by Step Guide Hicomply v2
12 pages
2023-03-17 Report Radicati Endpoint Security Market Quadrant - 2023
100% (1)
2023-03-17 Report Radicati Endpoint Security Market Quadrant - 2023
65 pages
The NIS2 Directive: by Christopher Nett
No ratings yet
The NIS2 Directive: by Christopher Nett
71 pages
Ebook NIS2
No ratings yet
Ebook NIS2
20 pages

NIS2 - What You Need To Do Now

Uploaded by

NIS2 - What You Need To Do Now

Uploaded by

ARE YOU READY FOR NIS2?

Fines vary for "Essential" and

You might also like