The European Union’s (EU) Network and Information Security Directive 2 (NIS2) came into force across Europe on 17 October 2024, aiming to strengthen cybersecurity across various sectors, including critical infrastructure and digital services. It was built on the foundations of NIS, adopted in 2016, as a direct response to the changing, increasingly complex threat landscape, and aims to minimise cyber risk, as well as increase and standardise cybersecurity measures across the expansive European economic landscape. To comply, organisations will need to implement a range of measures, including risk assessments, incident response plans, and robust security practices. Failure to adhere to…
Mark Weir
