The new NIS2 Directive: strengthened cybersecurity & increased obligations

The new Network and Information Security (NIS2) Directive has created a significant wave of change in digital security in Europe. Building on the previous NIS legislation, the Directive aims to strengthen cybersecurity and the management of digital threats in Member States. With its broad scope and focus on critical infrastructure and digital services, the Directive has the potential to impact a wide range of stakeholders.

The new Network and Information Security (NIS2) Directive has created a significant wave of change in digital security in Europe. Building on the previous NIS legislation, the Directive aims to strengthen cybersecurity and the management of digital threats in Member States. With its broad scope and focus on critical infrastructure and digital services, the Directive has the potential to impact a wide range of stakeholders.

NIS2 Directive: Europe's newest shield against digital threats

For companies in the Life Science sector, the update of the Directive may have significant consequences and impact. Increased cyber security requirements, protection of research data and incident reporting requirements to name a few areas. This is to secure our digital future and strengthen our cyber defense.

The NIS2 Directive has strengthened the requirements for Member States to establish national strategies and cooperate more closely to address the growing threats to digital infrastructure. Previously affected sectors, such as healthcare, have now been expanded and, importantly, more sectors are now included, such as medical device manufacturers and digital service providers like cloud services and platform companies. These actors are expected to maintain high cybersecurity standards and report serious incidents to authorities.

Cross-border cooperation

Another important aspect of NIS2 is the requirement for Member States to establish cooperation mechanisms and national coordination teams to deal with digital incidents more effectively. This will contribute to faster information sharing and coordinated responses to large-scale incidents.

The Directive also emphasizes the need to conduct regular risk assessments and to designate specific responsible authorities to monitor and enforce compliance. At the same time, it stresses the importance of protecting sensitive information and working with companies and organizations to improve the response to incidents.

In short, the new NIS2 Directive represents a broader and more ambitious approach to cybersecurity, with increased obligations for Member States and stakeholders in a wide range of sectors. By strengthening the protection of critical infrastructure and digital services, as well as through increased cooperation and information sharing, the NIS2 Directive aims to make the European digital landscape more resilient to cyber threats in an increasingly digitalized world.

Do you think your business could be affected by NIS2? Contact one of our experts and we will help you meet the new requirements.

In this article

Stay up to date

SUBSCRIBE TO LATEST INSIGHTS