Network and Information Security Directive 2 NIS2

What you need to know.

• Article 21 measures: risk assessment, incident handling, business continuity, supply chain security, vulnerability handling, cryptography, access control
• Applies to: energy, transport, banking, health, water, digital infrastructure, public administration
• Significant fines: €10M or 2% of global turnover
• Management body accountability
• 24-hour early warning + 72-hour notification