NIS2 is the European Union's directive on cybersecurity. Member states have until October 17, 2024, to implement it. But what changes?
Acronym for Network and Information Security 2, the NIS2 is the directive issued by the European Union, with the aim of strengthen cybersecurity and the resilience of critical infrastructures in all Member States.
What are the new features it brings? Read this article to find out.
Italy, EU's black sheep for cyber attacks
According to a report by Trend Micro, Italy is the leading country in Europe for malware attacks and the fourth in the world, after Japan, the United States, and India.
The EU is also struggling on this front, with approximately 2,799 serious incidents in 2023 (Clusit data).
Also to reduce the number of these attacks that the European Union has introduced new legislation, which replaces NIS1, issued in 2016. The Member states have until October 17 of this year to transpose the directive.
What are the main innovations it introduces?
- Expand the areas of application: the NIS2 extends security obligations to sectors such as telecommunications, energy, transport, financial services, and public administration.
- Introduce new categories of stakeholders in the regulation, dividing them into "essential" and "important".
- Obliges companies to develop new security policies informatics, such as risk analysis and security assessment of the supply chain.
- Reduces the time for incident notification, which must be reported promptly.
- It foresees hefty fines, up to 10 million euros, for significant entities in case of violations.
Learn more in our webinar
Do you want to discover all the details of the regulation and how it impacts the work of proximity operators? Follow the new webinar by Assoprovider, curated by lawyer Vincenzo Gallotto in collaboration with Sg Solution.
- Date: 30 September 2024 at 3:00 PM.
Here to register: Web Zoom