As of June 2025, solely 9 nations within the European Union (EU) have transposed the NIS2 Directive into nationwide regulation. These nations embrace Croatia, Hungary, Belgium, Italy, Latvia, Greece, Lithuania, Romania, and Slovakia. A number of different nations are in superior phases with draft legal guidelines being actively mentioned in parliaments. Nonetheless, that leaves a big majority of EU nations nonetheless not implementing the NIS2 cybersecurity regulation!
What’s NIS2?
On October 17, 2024, essential organizations working within the EU have been anticipated to adjust to the up to date model of the Community and Info Safety directive. NIS2 elevates the stakes with stricter cybersecurity necessities, incident reporting tips, and vital monetary penalties for non-compliance. NIS2 makes compliance necessary for all organizations with revenues over €10 million energetic in numerous sectors akin to power, transportation, manufacturing, and extra. So, you’re in all probability involved.
You could be one of many organizations within the EU nonetheless ready for the directive to be transposed to see precisely what that you must implement. However lots of the NIS2 measures are merely cybersecurity greatest practices that any group ought to implement no matter any regulation. By complying with NIS2, you possibly can enhance your group’s cyber resilience, higher defend staff, and assist to make sure uptime of your operations.
Compliance is the important thing to success
Though securing operational expertise (OT) and industrial networks has grow to be high of thoughts, IT and CISO groups are simply beginning to make it a precedence and sometimes lack the visibility and management required to adjust to NIS2 for each their IT and OT networks. Perhaps you’ve checked out NIS2 for the enterprise networks, however it is best to think about these few steps to make your industrial operations comply as nicely:
- Drive cyber hygiene in your industrial operations through the use of Cisco Cyber Imaginative and prescient to robotically construct an in depth stock of all linked property and their communication patterns so you possibly can assess your safety posture and outline your OT safety technique.
- Enhance vulnerability administration through the use of danger scores calculated by Cyber Imaginative and prescient to prioritize actions and areas of your industrial infrastructure to safe first.
- Decrease danger from OT suppliers and repair suppliers. Use Cyber Imaginative and prescient to determine unmanaged distant entry gateways and construct a plan to interchange them with a zero-trust distant entry resolution made for OT akin to Cisco Safe Tools Entry (SEA).
- Stop and reduce the affect of incidents by implementing zone segmentation as really helpful by the ISA/IEC-62443 industrial safety commonplace. Work with the road of enterprise to create digital segments in Cyber Imaginative and prescient by grouping property. This info is robotically utilized by Cisco ISE and/or Cisco Safe Firewalls to implement zero-trust entry management within the industrial community.
- Guarantee you possibly can detect and report incidents. Cyber Imaginative and prescient can detect intrusion, malicious actions and irregular behaviors within the industrial community. All these occasions may be despatched to Splunk to be correlated with these from Cisco Safe Firewall and different safety instruments. Now you’ve one repository to run superior investigations and report complete info as required by NIS2.
As you’re accelerating your industrial digitization efforts, you’re additionally increasing the assault floor. NIS2 is designed to make sure your group and your nation grow to be cyber-resilient. No matter when this regulation shall be successfully enforced in your nation, you can begin implementing greatest practices and guarantee your industrial operations are correctly protected. Don’t wait. Act now.
To study extra about what industrial organizations ought to implement to safe operations and the way Cisco will help along with your NIS2 compliance journey, take a look at these assets:
Subscribe to the Industrial IoT E-newsletter
Share:
