NIS2 Directive

NIS2 Directive

Latest news

NIS2 draft technical and methodological requirements

June 28, 2024

The European Commission invites feedback on a draft implementing act under the NIS2 Directive, which contains detailed technical and methodological requirements for cybersecurity risk-management measures

NIS2 into force, new rules likely apply as of October 2024

July 7, 2023

NIS2, also known as the revised Directive on Security of Network and Information Systems, is a European Union legislation aimed at enhancing cybersecurity and ensuring

Browse the NIS2 Directive by article

Article 1 – Subject matter

Article 2 – Scope

Article 3 – Essential and important entities

Article 4 – Sector-specific Union legal acts

Article 5 – Minimum harmonisation

Article 6 – Definitions

Article 7 – National cybersecurity strategy

Article 8 – Competent authorities and single points of contact

Article 9 – National cyber crisis management frameworks

Article 10 – Computer security incident response teams (CSIRTs)

Article 11 – Requirements, technical capabilities and tasks of CSIRTs

Article 12 – Coordinated vulnerability disclosure and a European vulnerability database

Article 13 – Cooperation at national level

Article 14 – Cooperation Group

Article 15 – CSIRTs network

Article 16 – European cyber crisis liaison organisation network (EU-CyCLONe)

Article 17 – International cooperation

Article 18 – Report on the state of cybersecurity in the Union

Article 19 – Peer reviews

Article 20 – Governance

Article 21 – Cybersecurity risk-management measures

Article 22 – Union level coordinated security risk assessments of critical supply chains

Article 23 – Reporting obligations

Article 24 – Use of European cybersecurity certification schemes

Article 25 – Standardisation

Article 26 – Jurisdiction and territoriality

Article 27 – Registry of entities

Article 28 – Database of domain name registration data

Article 31 – General aspects concerning supervision and enforcement

Article 32 – Supervisory and enforcement measures in relation to essential entities

Article 33 – Supervisory and enforcement measures in relation to important entities

Article 34 – General conditions for imposing administrative fines on essential and important entities

Article 35 – Infringements entailing a personal data breach

Article 36 – Penalties

Article 37 – Mutual assistance

Article 38 – Exercise of the delegation

Article 39 – Committee procedure

Article 40 – Review

Article 41 – Transposition

Article 42 – Amendment of Regulation (EU) No 910/2014

Article 43 – Amendment of Directive (EU) 2018/1972

Article 44 – Repeal

Article 45 – Entry into force

Article 46 – Addressees

Want to receive high quality updates on the NIS2 Directive?

Then subscribe to our monthly newsletter:

Powered by RiskNow – The Governance, Risk and Compliance solution with the ultimate user experience.