The NIS 2016 / 1148 Directive “ on the security of network and information systems ” was the first practical tool to regulate aspects of cybersecurity for companies that provide services considered essential for the well-being of the economic and social system of the European Union member states .
The growing complexity and sophistication of cyber attacks has forced the legislator to update the NIS Directive with NIS 2 in order to foster collaboration among member states and extend protection to the entire ccosystem or supply chain of companies with critical infrastructure .
Furthermore , the changes brought by the sharp digital acceleration imposed by the COVID-19 pandemic has led the
legislator to extend cybersecurity . ww The growing complexity and sophistication of cyber attacks has forced the obligations to almost all businesses .
What should companies expect from the future approval and implementation of the NIS 2 Directive ?
CYBERSECURITY IN THE NEW NORMAL
The original NIS Directive forced a significant shift towards cybersecurity betterment , however the framework requires consistent review to reflect the changing threat landscape . As a result the NIS 2 has been released to align its expectations and recommendations .
In particular , the main innovations compared to the previous NIS legislation focus on strengthening collaboration among European law enforcement agencies in fighting cybercrime .
The purpose of the NIS 2 Directive is to replace and / or integrate the current provisions of NIS legislation that have already been enacted by laws issued by European member states , and to impose some essential cornerstones . u