NIS2 Directive Readiness: Compliance, Challenges and Recommendations
The new NIS2 (Network and Information Systems) Directive, which took effect in January 2023, aims to enhance the security of network and information systems across the European Union (EU). NIS2 broadens the range of sectors and types of organizations that must comply beyond the original NIS Directive. The new NIS2 Directive has expanded its regulatory scope to include public administration entities, digital service providers, and critical infrastructure operators. The new directive also institutes:
- Stricter security measures
- More detailed incident reporting
- Reduced time to report
- Supply chain security
- Increased governance and accountability
- Penalties for non-compliance
Based on results from a recent SANS survey, this webcast provides an updated view of modern threat capabilities, statistics on organizations’ preparedness for implementing NIS2, and recommendations to consider for meaningful defense and compliance strategies across both IT (Information Technology) and ICS/OT (Industrial Control Systems/Operating Technology) operations.
