As of June 2025, solely 9 nations within the European Union (EU) have transposed the NIS2 Directive into nationwide legislation. These nations embrace Croatia, Hungary, Belgium, Italy, Latvia, Greece, Lithuania, Romania, and Slovakia. A number of different nations are in superior phases with draft legal guidelines being actively mentioned in parliaments. Nonetheless, that leaves a big majority of EU nations nonetheless not imposing the NIS2 cybersecurity regulation!
What’s NIS2?
On October 17, 2024, crucial organizations working within the EU have been anticipated to adjust to the up to date model of the Community and Data Safety directive. NIS2 elevates the stakes with stricter cybersecurity necessities, incident reporting pointers, and important monetary penalties for non-compliance. NIS2 makes compliance necessary for all organizations with revenues over €10 million lively in varied sectors akin to vitality, transportation, manufacturing, and extra. So, you’re in all probability involved.
You could be one of many organizations within the EU nonetheless ready for the directive to be transposed to see precisely what you’ll want to implement. However lots of the NIS2 measures are merely cybersecurity finest practices that any group ought to implement no matter any regulation. By complying with NIS2, you’ll be able to enhance your group’s cyber resilience, higher defend workers, and assist to make sure uptime of your operations.
Compliance is the important thing to success
Though securing operational expertise (OT) and industrial networks has turn out to be prime of thoughts, IT and CISO groups are simply beginning to make it a precedence and sometimes lack the visibility and management required to adjust to NIS2 for each their IT and OT networks. Possibly you’ve checked out NIS2 for the enterprise networks, however you must take into account these few steps to make your industrial operations comply as nicely:
Drive cyber hygiene in your industrial operations through the use of Cisco Cyber Imaginative and prescient to routinely construct an in depth stock of all related property and their communication patterns so you’ll be able to assess your safety posture and outline your OT safety technique.
Enhance vulnerability administration through the use of danger scores calculated by Cyber Imaginative and prescient to prioritize actions and areas of your industrial infrastructure to safe first.
Decrease danger from OT suppliers and repair suppliers. Use Cyber Imaginative and prescient to determine unmanaged distant entry gateways and construct a plan to interchange them with a zero-trust distant entry resolution made for OT akin to Cisco Safe Tools Entry (SEA).
Forestall and decrease the influence of incidents by implementing zone segmentation as really useful by the ISA/IEC-62443 industrial safety customary. Work with the road of enterprise to create digital segments in Cyber Imaginative and prescient by grouping property. This info is routinely utilized by Cisco ISE and/or Cisco Safe Firewalls to implement zero-trust entry management within the industrial community.
Guarantee you’ll be able to detect and report incidents. Cyber Imaginative and prescient can detect intrusion, malicious actions and irregular behaviors within the industrial community. All these occasions may be despatched to Splunk to be correlated with these from Cisco Safe Firewall and different safety instruments. Now you’ve got one repository to run superior investigations and report complete info as required by NIS2.
As you’re accelerating your industrial digitization efforts, you’re additionally increasing the assault floor. NIS2 is designed to make sure your group and your nation turn out to be cyber-resilient. No matter when this regulation will probably be successfully enforced in your nation, you can begin implementing finest practices and guarantee your industrial operations are correctly protected. Don’t wait. Act now.
To study extra about what industrial organizations ought to implement to safe operations and the way Cisco may also help along with your NIS2 compliance journey, take a look at these assets:
Subscribe to the Industrial IoT E-newsletter
Share: