The NIS2 Directive is set to become law in October of this year. BT Ireland’s Michael McNamara spoke to SiliconRepublic.com about what this means for businesses.

NIS2 is an EU directive that is being introduced into law later this year and it will put several new requirements on senior managers and companies to ensure they have effective cybersecurity.

As well as additional cybersecurity responsibilities, the directive also includes penalties for non-compliance. The directive also reduces the time limit for reporting major incidents to national bodies from 72 hours to 24 hours.

The NIS2 Directive is the follow-up to NIS1, which was introduced in 2016, and this was the first piece of cybersecurity legislation introduced by the EU.

According to BT Ireland’s Michael McNamara, one of the key areas that will impact businesses is around supply chain security.

“It’s no longer good enough to look after the security within the four walls of your business. You now need to look at your supply chain and ensure that the right security measures are in place there as well,” he told SiliconRepublic.com.

“The most important things that companies need to do to ensure that they’re cyber resilient, the first one is to know the assets you have in your business, know what’s important to your business, and ensure that you secure them to that level of importance.”

>> READ MORE

Words by Jenny Darmody