PREDICTIVE intelligence
Are you ready ? Why UK IT teams need to prepare for the EU ’ s new cybersecurity directive
Copenhagen-based Kim Larsen , CISO at Keepit , tells us why IT teams in the UK need to prepare for the EU ’ s new Network and Information Systems Directive . rom October , a new directive
F designed to safeguard critical infrastructure and protect against cyberthreats comes into force across the European Union ( EU ). And although the United Kingdom is no longer a member of the EU , it ’ s still really important to understand the changes : the Network and Information Systems Directive ( NIS2 ) is highly relevant , especially for UK businesses operating in the EU .
Not to mention that the regulations align closely with the UK ’ s own robust cybersecurity frameworks , including the anticipated Cyber Security and Resilience Bill introduced in the King ’ s Speech this summer . So preparing for changes now , could help when it comes to complying with UK regulations in the future .
Why does this matter in the UK ?
1 . Set yourself apart
Like GDPR , NIS2 attempts to unify the way the whole of the EU approaches data . And , much like GDPR , it ’ s anticipated that NIS2 will set global standards that will increasingly become best practice worldwide . By adopting NIS2 standards early , UK businesses will make it easier for EU partners to work with them . And , if nothing else , demonstrating an understanding of and adhering to high cybersecurity standards can help businesses stand out , especially in sectors where security and trust are crucial .
2 . Strengthen business relationships with EU partners
No business operates in a vacuum , and many UK organisations rely on strong relationships with EU partners . These relationships may increasingly hinge on following NIS2 standards : as we saw with GDPR , many EU companies may require their suppliers and partners to comply with equivalent cybersecurity measures . Failing to do so could limit opportunities for collaboration or result in lost contracts it makes sense to start now , and really get to know the directive , so it ’ s easier to align cybersecurity practices with NIS2 .
3 . Align with future regulations
When the Cyber Security and Resilience Bill was introduced to Parliament , it demonstrated that although the UK is no longer bound by EU legislation , it is almost inevitable that the UK government will introduce similar regulations to maintain alignment with international standards . It makes sense . Given the interconnected nature of global cyberthreats , it ’ s not practical to reinvent or move away from existing regulation . So by understanding what ’ s coming , and aligning with NIS2 , UK organisations will be much better prepared for future national regulatory changes too – and of course better protected against cyberthreats .
4 . Build cyber-resilience
This goes beyond compliance for compliance ’ s sake . When it comes into force , NIS2 is designed
Demonstrating an understanding of and adhering to high cybersecurity standards can help businesses stand out .
Kim Larsen , CISO at Keepit
WWW . INTELLIGENTCISO . COM 33