As of June 2025, solely 9 nations within the European Union (EU) have transposed the NIS2 Directive into nationwide legislation. These nations embrace Croatia, Hungary, Belgium, Italy, Latvia, Greece, Lithuania, Romania, and Slovakia. A number of different nations are in superior levels with draft legal guidelines being actively mentioned in parliaments. Nonetheless, that leaves a big majority of EU nations nonetheless not imposing the NIS2 cybersecurity regulation!
What’s NIS2?
On October 17, 2024, vital organizations working within the EU had been anticipated to adjust to the up to date model of the Community and Info Safety directive. NIS2 elevates the stakes with stricter cybersecurity necessities, incident reporting pointers, and vital monetary penalties for non-compliance. NIS2 makes compliance necessary for all organizations with revenues over €10 million energetic in numerous sectors corresponding to power, transportation, manufacturing, and extra. So, you’re most likely involved.
You could be one of many organizations within the EU nonetheless ready for the directive to be transposed to see precisely what you want to implement. However lots of the NIS2 measures are merely cybersecurity finest practices that any group ought to implement no matter any regulation. By complying with NIS2, you may enhance your group’s cyber resilience, higher shield workers, and assist to make sure uptime of your operations.
Compliance is the important thing to success
Though securing operational expertise (OT) and industrial networks has grow to be prime of thoughts, IT and CISO groups are simply beginning to make it a precedence and infrequently lack the visibility and management required to adjust to NIS2 for each their IT and OT networks. Possibly you’ve checked out NIS2 for the enterprise networks, however you must contemplate these few steps to make your industrial operations comply as nicely:
- Drive cyber hygiene in your industrial operations by utilizing Cisco Cyber Imaginative and prescient to mechanically construct an in depth stock of all related belongings and their communication patterns so you may assess your safety posture and outline your OT safety technique.
- Enhance vulnerability administration by utilizing threat scores calculated by Cyber Imaginative and prescient to prioritize actions and areas of your industrial infrastructure to safe first.
- Reduce threat from OT suppliers and repair suppliers. Use Cyber Imaginative and prescient to establish unmanaged distant entry gateways and construct a plan to switch them with a zero-trust distant entry resolution made for OT corresponding to Cisco Safe Tools Entry (SEA).
- Forestall and reduce the impression of incidents by implementing zone segmentation as advisable by the ISA/IEC-62443 industrial safety normal. Work with the road of enterprise to create digital segments in Cyber Imaginative and prescient by grouping belongings. This data is mechanically utilized by Cisco ISE and/or Cisco Safe Firewalls to implement zero-trust entry management within the industrial community.
- Guarantee you may detect and report incidents. Cyber Imaginative and prescient can detect intrusion, malicious actions and irregular behaviors within the industrial community. All these occasions may be despatched to Splunk to be correlated with these from Cisco Safe Firewall and different safety instruments. Now you’ve got one repository to run superior investigations and report complete data as required by NIS2.
As you’re accelerating your industrial digitization efforts, you’re additionally increasing the assault floor. NIS2 is designed to make sure your group and your nation grow to be cyber-resilient. No matter when this regulation shall be successfully enforced in your nation, you can begin implementing finest practices and guarantee your industrial operations are correctly protected. Don’t wait. Act now.
To be taught extra about what industrial organizations ought to implement to safe operations and the way Cisco may help together with your NIS2 compliance journey, try these assets:
Subscribe to the Industrial IoT E-newsletter
Share: