You probably have heard a lot about GDPR, but how familiar are you with the NIS Directive?
Just in case you are curious, 🙂 NIS directive is the first piece of EU-wide legislation on cybersecurity whose main goal is to enable national authorities to better tackle threats against society's essential services (water, electricity, public transportation, etc).
Main takeaways:
- One of main challenges is to determine which are the critical providers that affect each essential service. This could result in more industries being affected by the law than initially foreseen.
- Although certification is not required, an alignment with ISO 27001 will help you become compliant.
- There is a great collaboration between government authorities from various EU countries. They are sharing know-hows and tackling challenges together.
Comments