Blog

NIS2: An EU-Wide cybersecurity strengthening and resilience solution

December 9, 2021

N/A

On December 3, the Council of the European Union (EU), announced that it had agreed on its general approach to the text of the NIS 2 Directive. In December 2020, the European Commission adopted its proposal for a revised version of the current NIS Directive, to improve the overall strength and resiliency of incident response, to expand its scope, and remove divergences in requirements in the different Member States. 

The agreement means that the Council Presidency can now begin negotiations on the text with the European Parliament to adopt a final version.

What’s new with NIS2?

NIS 2 addresses security throughout the EU from the top-down, recognizing a need for unification on expectations, regulations and processes across different member states. To achieve this the directive:

  • Sets a baseline for cybersecurity risk management measures and reporting obligations 
  • Updates and expands the list of sectors and activities subject to the obligations 
  • Introduces a size-cap rule* 
  • Establishes mechanisms for collaboration across state-wide authority systems
  • Provides enforcement-based solutions and sanctions 

The above work together to prioritize organizational trust, unification across silos and geographic locations, and to encourage business resiliency and continuity.​ 

*As defined by the rule, size capping means that “…medium-sized and large entities operating within the sectors covered by the directive will fall within its scope.” See the announcement for more details. 

The importance of regulatory involvement while establishing trust & unification across the security lifecycle

Unification across domains and geographic locations enables customers and key stakeholders to expect a consistent standard of trust no matter location, industry, or situational nuances. The formation of directives like NIS 2 empowers informed, cohesive risk-based decision making across entities, setting the business foundation for:

  • Confident risk quantification 
  • Consistent brand reputation 
  • Increased customer loyalty 
  • Streamlined compliance 
  • Efficient risk management

As individual entities begin to explore the benefits of trust and unification, the subsequent increase in regulatory action by key authorities is critical in setting global precedents so that the above benefits can be felt across the security industry as a whole.

How can OneTrust help with NIS2 Compliance? 

The OneTrust platform leverages expertise in GRC, specializing in Vendor Risk Management, Privacy, Incident Management and many other categories to deliver an immersive security and privacy management experience. A key component of the OneTrust incident management solution is identifying related jurisdictions, governing authorities, and notification requirements based on the context of the incident. We enable you to gain visibility into all aspects of your organization’s security structure and empower holistic security strategy by enabling your company to consider risk across all domains and regulatory expectations. This allows for seamless incident management and the ability to prioritize trust and transparency as a competitive advantage.  

Follow OneTrust on LinkedIn, Twitter, or YouTube for the latest on digital transformation. 


You may also like

Webinar

Responsible AI

Unpacking the EU AI Act

Prepare your business for EU AI Act and other AI regulations with this expert webinar. We explore the Act's key points and requirements, building an AI compliance program, and staying ahead of the rapidly changing AI regulatory landscape.

July 12, 2023

Learn more

Webinar

Responsible AI

Unpacking the EU AI Act

Prepare your business for EU AI Act and other AI regulations with this expert webinar. We explore the Act's key points and requirements, building an AI compliance program, and staying ahead of the rapidly changing AI regulatory landscape.

July 12, 2023

Learn more

Webinar

Consent & Preferences

Live demo: How to automate consent and preference management with OneTrust

In this webinar, we demonstrate how OneTrust Consent and Preferences helps build stronger customer relationships by providing transparency, giving users control over their data use, and delivering personalized experiences.

June 29, 2023

Learn more

Webinar

Consent & Preferences

Live demo: How to automate consent and preference management with OneTrust

In this webinar, we demonstrate how OneTrust Consent and Preferences helps build stronger customer relationships by providing transparency, giving users control over their data use, and delivering personalized experiences.

June 29, 2023

Learn more

Webinar

Privacy Management

Unpacking the EU-US DPF

In this webinar, we cover the new EU-US Data Privacy Framework (EU-US DPF) and what privacy program managers need to know for post-Schrems II data transfers.

June 28, 2023

Learn more

Webinar

Privacy Management

Unpacking the EU-US DPF

In this webinar, we cover the new EU-US Data Privacy Framework (EU-US DPF) and what privacy program managers need to know for post-Schrems II data transfers.

June 28, 2023

Learn more

Webinar

Data Discovery

Live demo: OneTrust Data Discovery

See how OneTrust Data Discovery can help your organization achieve complete data visibility to empower your security program and reduce risk.

June 22, 2023

Learn more