NIS2 Directive

🫸 Even in the field of cybersecurity, politics can slow down, or even hinder, regulatory progress such as the NIS2 directive. 🫷

France is struggling to transpose the European NIS2 directive into its national law, suffering a delay due to political blockages and governmental instability.

This directive, although essential to strengthen the cybersecurity of companies and critical infrastructures, could affect more than 10,000 French organizations from 18 sectors of activity.

WHERE ARE WE NOW?

👉 Some countries like Hungary, Belgium or Lithuania are already exemplary, having integrated the directive as early as 2023.

👉 France, on the other hand, is in an intermediate group of maturity with Germany or Denmark, still far from effective implementation.

👉 Result: companies will have to wait, while continuing to face growing cyber threats without a fully adapted regulatory framework.

WHAT ARE THE OBLIGATIONS?

Once transposed, NIS2 will require organizations to:

1️⃣ Report security incidents.

2️⃣ Implement proactive risk management.

3️⃣ Collaborate with ANSSI through regular reports and audits.

But with a full compliance period of three years after the vote, these crucial measures still seem a long way off…

💡 How can we ensure that political and administrative issues do not hinder cybersecurity?

#Cybersecurity #DirectiveNIS2 #ComputerSecurity #Regulations

ANSSI - National Cybersecurity Agency of France 🟣 DSIACTIVE 🟡 GROUPEACTIVE Cybermalveillance.gouv.fr