NIS 2: Compliance at a Glance

ENISA's recent report on NIS investments highlights how the NIS 2 Directive has impacted cybersecurity investments and the overall maturity of organizations involved.

• 89% of organizations will require more cybersecurity staff to achieve NIS 2 compliance, primarily in the cybersecurity architecture and engineering (46%) and cybersecurity operations (40%) domains.
• Organizations will also need additional FTEs to meet compliance with other horizontal (CRA - 85%) or vertical (DORA - 84%; NCCS - 81%) cybersecurity legislation.
• Sectors newly covered by the NIS 2 Directive, in most cases, lag behind sectors already covered by it in areas such as participation in information-sharing initiatives (60% non-participation), participation in cybersecurity preparedness initiatives, controls to establish trust in supply chain (20% implicitly trust it).

Is your company affected by the NIS2 Directive? What are the deadlines you need to keep in mind?

Download Neurosoft’s pocket-sized guide and find out.