Menu

NIS2 is here, now what? Here’s what it means for your company

Download your pdf here.
nis2, wat nu?

New European directives for cybersecurity have been in effect since January 2023: The Network and Information Security 2 (NIS2). These directives are applicable to a wide range of sectors. It’s very important for companies and organizations to comply with these directives. In this blog you’ll read what exactly the NIS2 means, which sectors are covered by the directives and how organizations should prepare for the NIS2.

What is NIS2?

The NIS2 legislation is an extension of the NIS legislation and aims to guarantee a higher level of security of network and information systems within the European Union. This is achieved by requiring Member States to adopt and implement appropriate security measures. The goal? Reducing the risks of cyberattacks and limiting their consequences. The NIS2 targets companies and organizations operating in vital sectors, such as energy, transportation, healthcare, and financial services, as well as other sectors that are critical to keeping our economy and society running.

Why is NIS2 compliance important?

Companies and organizations subject to the NIS2 have a very important task in the coming period: to be NIS2 compliant. Het niet naleven van de NIS2 leidt namelijk tot hoge boetes die kunnen oplopen tot wel 2% van de jaaromzet. But more importantly, NIS2 compliance is necessary to ensure digital security and prevent cyberattacks. The NIS2 directives require companies and organizations to take their digital security to a higher level and adapt to increasing cybercrime threats.

nis2, what now?

What if you don’t belong to the mentioned sectors?

Although the NIS2 directives mainly focus on companies and organizations operating in vital sectors, it is well worth remembering that these directives can also affect companies and organizations that do not qualify as a vital sector. For example, companies that supply to companies that do fall under these sectors may also be asked to comply with the NIS2 directives in order to continue to deliver. It’s important for companies to consider the impact of the NIS2 directives on their customers and suppliers and to take timely measures to comply with these requirements.

How can you prepare for NIS2 as a company or organization?

As a company or organization, you can prepare for the NIS2 by first determining whether the directives apply to your company or those of your customers or partners. On our website, we previously posted a blog with information about these guidelines. Next, it’s important to identify what measures are needed to become NIS2 compliant. This can be done by identifying security risks, limiting these risks and limiting the consequences of cyber incidents.

Not yet NIS2 compliant? These are the consequences:

There’s no exact number available of EU companies that are already fully compliant with the NIS2 directives. However, companies that fall under the mandatory sectors must be NIS2 compliant. This applies not only to large companies, but also to small and medium-sized enterprises. It’s important to realise that the NIS2 directives aren’t optional and there are high fines for non-compliance.

In addition to the financial consequences, it can also lead to reputational damage if a cyberattack occurs due to non-compliance with the NIS2 directives. You should not only strive to be NIS2 compliant to avoid fines, but also to ensure digital security and maintain the trust of customers and partners.

How to become NIS2 compliant

Although the NIS2 went into effect back in January, organizations and companies still have some time to prepare for it. According to the planning of the National Cyber Security Center (NCSC), the NIS2 legislation won’t fully come into force until 2024. In the meantime, organizations can use different tools like the Risk analysis roadmap of the Digital Trust Centre. In addition, it’s wise to appoint a NIS2 compliance officer who is responsible for the implementation and compliance of the NIS2 directives within the company. This is because the NIS2 has major consequences for companies and organizations in Europe, including the Dutch business community.

The most simple solution for NIS2

Do you want simplicity and certainty? Choose the help of OpenSight! With the help of Cyberday, our experts get to work on your cyber security Cyberday offers transparency for you as a company, expertise for cybersecurity solutions and necessary documentation and logging to comply with cybersecurity standards such as NIS2. All this in combination with the help, advice, and watchful eye of cybersecurity experts from OpenSight.

Please feel free to contact us for a consultation. We are happy to help!
Or download the NIS2 brochure.

Related posts
commvault maakt cis geharde implementatie mogelijk
Commvault Cloud maakt CIS-geharde implementatie mogelijk op marktplaatsen voor hyperscalers in de cloud
Published on 12-02-2025
integratie commvault crowdstrike header
Verbeterde cyberweerbaarheid met Commvault en CrowdStrike
Published on 10-02-2025
Webinar ‘Awareness Training’
Published on 26-09-2024

Download hier

Vul je gegevens in en druk op de download knop om de bestanden te downloaden.

Download here

Fill in the form and hit 'Download' to receive the files.

Bellen
Mailen