Not sure if it’s right for you?
Here are 10 answers to your doubts:
1. What is the NIS2 Directive?
The NIS2 Directive is the European regulation that updates and strengthens cybersecurity measures for critical infrastructures and essential sectors. The directive was implemented in Italy with Legislative Decree No. 138 of 4 September 2024 (Legislative Decree No. 138/2024).
2. Who is subject to the NIS2?
The directive applies to a greater number of subjects than NIS1, including companies in essential and important sectors such as energy, transport, healthcare and digital services.
3. What are the main requirements?
Companies must adopt adequate security measures, manage cybersecurity risks, and promptly report any incidents to the competent authorities.
4. What are the penalties for non-compliance?
NIS2 introduces significant penalties, including fines proportional to the company’s turnover and other corrective measures imposed by regulatory authorities.
5. How does it differ from the previous NIS Directive?
NIS2 expands the scope of application, introduces tighter security requirements, and imposes greater accountability on company executives.
6. Which sectors are considered essential?
The essential sectors include: energy, transport, healthcare, water resource management, digital infrastructures, public administration and the financial sector, among others.
7. Is a certification required to prove compliance?
No, the directive does not require specific certification, but companies must demonstrate that they have adopted adequate safety measures.
8. What are the key security measures required?
Companies must implement:
- Cyber risk management
- Protection of IT systems
- Continuous monitoring of threats
- Timely response to incidents
- Staff training and awareness
9. Who is in charge of the supervision and control?
Each member state designates a national competent authority responsible for monitoring and enforcing the NIS2 Directive. In Italy, this role is fulfilled by the Agency for National Cybersecurity (ACN).
10. Do you provide NIS2 compliance assessments?
Yes, we offer a service to assess company compliance with the NIS2 Directive.
Request a quote
We offer the opportunity to discuss customised solutions. To request a quote, please fill out the form below and click “Submit.” You will be contacted as soon as possible. Please make sure to complete all required fields.