Back to glossary

nis2

NIS2

The EU directive that strengthens requirements for cybersecurity, management accountability and incident reporting.

Definition

NIS2 applies to many more organisations than the first NIS regulation. It requires risk management, supplier control, incident handling and documented training.

Why it matters

Leaders cannot delegate away accountability. They must show that controls, roles and competence are actually in place.