Skip to main content
Search
Menu
EU
Photo: Pixabay

How to prepare for the EU Cybersecurity Directive NIS2

15 April 2024, 10:42

The EU NIS2 Directive, adopted in 2022 and soon to enter into force, is an update of the existing directive and a crucial piece of legislation that aims to improve cybersecurity across Europe and strengthen the protection of essential services. With increasing digitalisation and an ever-present threat landscape, NIS2 is a much-needed part of strategies to secure the digital infrastructure.

Who is affected?

NIS2 aims to ensure a high level of information security across the EU by focusing in particular on critical sectors such as energy, finance, healthcare and transport. This directive is an important response to digitalisation and the increasingly sophisticated cyber threats affecting our infrastructure and the functioning of our society.

NIS2 expands its scope compared to its predecessor, NIS1, by including more sectors, introducing minimum requirements for action, and expanding supervisory possibilities. This means more industries will be affected, which now also includes industries such as space, sewage, waste, manufacturing, food, chemicals, district heating, and others.

How to prepare

Each Member State must implement NIS2 in its national legislation. For Swedish companies and organisations affected, this means that they must prepare to meet the new requirements now. NIS2 prescribes specific measures that must be taken to improve cybersecurity. These include risk analysis, incident management, business continuity and supply chain security. It also requires strategies for managing vulnerabilities, cyber hygiene training and the use of cryptography.

Swedish companies and organisations should carefully examine how they are covered by the Directive and take appropriate measures to comply with its requirements. Failure to comply with the new requirements will result in significantly higher fines than before for inadequate levels of compliance.

RISE's role linked to NIS2

RISE closely follows the new EU regulations and plays an important role in supporting Swedish industry and increased competitiveness. We are an independent organisation with cyber security expertise that offers training, counselling, accredited testing against regulations and standards, research and testing in the field of cyber security.

Cybersecurity training courses at RISE

Professional penetration testning

Certifications in cybersecurity

Ted Strandberg

Ted Strandberg

Projektledare

+46 10 516 60 93

Read more about Ted

Contact Ted
CAPTCHA
This question is for testing whether or not you are a human visitor and to prevent automated spam submissions.

* Mandatory By submitting the form, RISE will process your personal data.

2024-11-18

2024-10-21

2024-10-01

2024-08-05

2024-06-27

2024-06-10

2024-05-13

2024-04-15

2024-03-13

2024-01-08

2024-01-08

2023-11-28

2023-11-20

2023-10-23

2023-10-10

2023-09-12

2023-08-22

2023-07-05

2023-06-11

2023-06-05

2023-06-01

2023-04-25

2023-04-04

2023-03-27

2023-02-20

2023-02-08

2023-02-03

2023-02-02

2023-02-02

2023-01-26