Network and Information Systems Directive
Description
The NIS2 Directive is an updated European Union regulation aimed at improving the cybersecurity of critical infrastructures, replacing the original NIS Directive. It significantly broadens the scope to include more sectors, introduces stricter cybersecurity requirements, and imposes heavier penalties for non-compliance. NIS2 applies to both "essential" and "important" entities across industries such as healthcare, digital infrastructure, energy, and public administration. Key elements of the directive include improved risk management, expanded incident reporting requirements, and a focus on supply chain security.
Overview
NIS2 is aimed at essential and important entities across various sectors in the EU, including critical infrastructure. Its purpose is to enhance cybersecurity resilience and improve coordination across member states to protect against cyber threats.
Related Cybersecurity Frameworks
23 NYCRR 500
Cybersecurity Regulation
Cybersecurity
Learn More
CC SRG
Cloud Computing Security Requirements Guide
Cybersecurity
Learn More
CCoP
Cloud Code of Practice
Cybersecurity
Learn More
CIS Controls
Center for Internet Security Controls
Cybersecurity
Learn More
CSA CCM
Cloud Controls Matrix
Cybersecurity
Learn More
Cyber Essentials
Cyber Essentials
Cybersecurity
Learn More