As of June 2025, solely 9 nations within the European Union (EU) have transposed the NIS2 Directive into nationwide legislation. These nations embody Croatia, Hungary, Belgium, Italy, Latvia, Greece, Lithuania, Romania, and Slovakia. A number of different nations are in superior phases with draft legal guidelines being actively mentioned in parliaments. Nonetheless, that leaves a big majority of EU nations nonetheless not implementing the NIS2 cybersecurity regulation!
What’s NIS2?
On October 17, 2024, important organizations working within the EU have been anticipated to adjust to the up to date model of the Community and Info Safety directive. NIS2 elevates the stakes with stricter cybersecurity necessities, incident reporting tips, and important monetary penalties for non-compliance. NIS2 makes compliance necessary for all organizations with revenues over €10 million lively in numerous sectors similar to vitality, transportation, manufacturing, and extra. So, you’re in all probability involved.
You is perhaps one of many organizations within the EU nonetheless ready for the directive to be transposed to see precisely what you want to implement. However most of the NIS2 measures are merely cybersecurity greatest practices that any group ought to implement no matter any regulation. By complying with NIS2, you’ll be able to enhance your group’s cyber resilience, higher shield staff, and assist to make sure uptime of your operations.
Compliance is the important thing to success
Though securing operational know-how (OT) and industrial networks has change into high of thoughts, IT and CISO groups are simply beginning to make it a precedence and sometimes lack the visibility and management required to adjust to NIS2 for each their IT and OT networks. Possibly you’ve checked out NIS2 for the enterprise networks, however you need to think about these few steps to make your industrial operations comply as properly:
- Drive cyber hygiene in your industrial operations by utilizing Cisco Cyber Imaginative and prescient to mechanically construct an in depth stock of all related belongings and their communication patterns so you’ll be able to assess your safety posture and outline your OT safety technique.
- Enhance vulnerability administration by utilizing threat scores calculated by Cyber Imaginative and prescient to prioritize actions and areas of your industrial infrastructure to safe first.
- Decrease threat from OT suppliers and repair suppliers. Use Cyber Imaginative and prescient to determine unmanaged distant entry gateways and construct a plan to exchange them with a zero-trust distant entry answer made for OT similar to Cisco Safe Tools Entry (SEA).
- Stop and decrease the affect of incidents by implementing zone segmentation as advisable by the ISA/IEC-62443 industrial safety normal. Work with the road of enterprise to create digital segments in Cyber Imaginative and prescient by grouping belongings. This data is mechanically utilized by Cisco ISE and/or Cisco Safe Firewalls to implement zero-trust entry management within the industrial community.
- Guarantee you’ll be able to detect and report incidents. Cyber Imaginative and prescient can detect intrusion, malicious actions and irregular behaviors within the industrial community. All these occasions will be despatched to Splunk to be correlated with these from Cisco Safe Firewall and different safety instruments. Now you could have one repository to run superior investigations and report complete data as required by NIS2.
As you’re accelerating your industrial digitization efforts, you’re additionally increasing the assault floor. NIS2 is designed to make sure your group and your nation change into cyber-resilient. No matter when this regulation shall be successfully enforced in your nation, you can begin implementing greatest practices and guarantee your industrial operations are correctly protected. Don’t wait. Act now.
To be taught extra about what industrial organizations ought to implement to safe operations and the way Cisco may also help together with your NIS2 compliance journey, take a look at these sources:
Subscribe to the Industrial IoT Publication
Share:
