These pages will be updated and expanded regularly.
The NIS-2 Directive was published end of December 2022. This page will give all essential references.
In January 2023 EU member states started the process of transposing this directive into national legislation. This legislation needs to be in place by mid October 2024 and will then be in effect immediately.
The NIS-2 directive will regulate both on national level and on organisation level. As the directive is a EU directive it is primarily applicable on EU member states. Some associated members (like Norway) will probable also transpose the directive into national legislation.
NRENs need to continuously seek dialogue with their national implementation coordinator in order to discuss their position. Due to the nature of NREN-business national coordinators might need assistance in deciding upon the position of the NREN.
The first GÉANT infoshare on NIS-2 was in 2021 as an introduction to the upcoming legislation related to the EU Security Union.
GÉANT Infoshare II on NIS-2 on January 11th, 2023: https://events.geant.org/event/1339/
GEANT Infoshare III on NIS-2 on March 28th, 2023, 13.00 CEST: https://events.geant.org/event/1386/
GÉANT Infoshare IV on NIS-2 on July 11th, 2023, 13.00 CEST
GÉANT Infoshare V on NIS-2 on November 27th, 2023, 13.00 CET: https://events.geant.org/event/1571/
GÉANT Infoshare VI on NIS-2 on March 18th, 2024, 14.00 CET: https://events.geant.org/event/1594/
GÉANT Infoshare VII on NIS-2 on June 24th, 2024, 14.00 CEST: https://events.geant.org/event/1682/
GÉANT Infoshare VIII on NIS-2 on December 5th, 2024, 14.00 CET: https://events.geant.org/event/1812/
References
Description | Location/link | date |
---|---|---|
NIS-2 directive (EU 2022/2555) full text/ all languages | 14 dec 2022 | |
Blogpost Andrew Cormack (focus on incident respons cooperation) | 5 Jan 2023 | |
GÉANT NIS-2 Infoshare II - 11 January 2023 | Slides presentation Alf Moens and Edit Herczog, the recording can be found here. | 11 jan 2023 |
Publication on 2nd Infoshare | https://connect.geant.org/2023/01/17/eu-security-union-2nd-infoshare | 17 jan 2023 |
NIS2 for NRENs - A Call to Action
| Stratix: NIS2 for NRENs - A Call to Action | 12 july 2023 |
NCSC Ireland: A quick guide to NIS2 | NIS 2 Quick reference guide.pdf | 21 oct 2023 |
DG CNECT has issued Guidelines to Member States on:
| 14 sep 2023 | |
NIS 2 Self-assessment Netherlands
| Website of the dutch national cybersecurity center on NIS2: "What will the NIS2 guideline mean for your organization?" with a NIS2 self-assessment questionnaire: https://regelhulpenvoorbedrijven.nl/NIS-2-NL/ | 14 nov 2023 |
Report on cybersecurity and resiliency of Europes communications infrastructures | 21 feb 2024 | |
Cybersecurity risk management & reporting obligations for digital infrastructure, providers and ICT service managers The first implementing act has been proposed. As regards technical and methodological requirements of cybersecurity risk-management measures and further specification of the cases in which an incident is considered to be significant. It is open for comment for a month until 25 July 2025. | 27 jun 2024 | |
Draft Guidance on cybersecurity measures - ENISA | Oct 2024 |
National implementations
Country | Details |
---|---|
Belgium | www.cyfun.eu |
Finland | https://valtioneuvosto.fi/en/projects-and-legislation/project?tunnus=LVM027:00/2023 |
Germany | |
Greece | The Greek Cybersecurity Framework consists of: a) the law 4577/2018 and the ministerial decision 1027/2019; 4854 b) the Cybersecurity Handbook available at: https://mindigital.gr/wp-content/uploads/2022/09/Cybersecurity- 4855 Handbook-English-version.pdf; and 4856 c) the self-assessment tool, available at: https://mindigital.gr/wp-content/uploads/2022/11/Cybersecurity-Self- 4857 Assessment-Tool-English-version.zip . 4858 |
Netherlands | |
Portugal | |
Spain |