Skip to main content
Research:
Research

Developing cybersecurity capabilities for the EU NIS

Achieving a high common security level of network and information systems in the European Union

European organisations are continuously innovating through technology and digitisation. These innovations bring cybersecurity challenges, especially for operators of essential services and infrastructure. The European Commission has responded by creating legislation, such as the NIS Directive, to tackle these challenges. This paper provides an overview of the implementation of the NIS Directive across Europe, its key stakeholders, and how European organisations can prepare by building the necessary cyber capabilities.

Developing cybersecurity capabilities for EU NIS Directive
3 MB PDF

 

Network and information systems support many of the essential services for the EU society and economy. It is therefore highly important to protect them from a continuously evolving threat landscape. The European Commission has introduced regulatory initiatives concerning the security of network and information systems and the protection of data.

The NIS Directive is among the main legislative initiatives involving all EU member states with the aim of enhancing the overall level of cybersecurity in the European Union.

This paper focuses on the need to develop cybersecurity capabilities in alignment with the NIS Directive. In particular, it highlights how stakeholders such as operators of essential services (OES) across different sectors (e.g. energy, transport, banking, etc.) and digital service providers (DSP) require and prioritise the development of specific cybersecurity capabilities.

  • An overview of the NIS Directive, with a focus on the security and notification requirements for OES and DSPs
  • An account of the NIS Directive developments based on the results of Deloitte’s NIS Directive Compliance Survey
  • An outline of cybersecurity capabilities supporting OES and DSPs to comply with the NIS Directive

Organisations dealing with the NIS Directive in their operational environments can gain useful insights from this paper.

Did you find this useful?

Yes
No

Thanks for your feedback

If you would like to help improve Deloitte.com further, please complete a 3-minute survey

Your feedback is important to us

To tell us what you think, please update your settings to accept analytics and performance cookies.

Need help updating cookies?

Contact

Peter Versmissen

Partner, Risk Advisory

Recommendations

Aftershock | Deloitte | Risk, Risk Management, ERM, Finance, Services

Following the latest global economic crisis, many business risks are still in a state of flux – and so are companies’ efforts to manage them, according to a new survey by Deloitte and Forbes Insights.
Research

Unlocking the potential of SAP S/4HANA

Deloitte SAP S/4HANA Risk Advisory team can support your organisation in the entire lifecycle of a business transformation project with a focus on risk management and value creation.
Research
10 minute read

BIMAC and Deloitte - Foundation Partners

BIMAC, the Belgian Community for Finance Professionals, and Deloitte have entered into a partnership. Together they will support and recognise professionals active in the domain of finance and management accounting and control.
Research

Focus on: The board’s-eye view of cyber crisis management

Learn about the different types of crisis triggers and the five things boards must ensure management is focused on to prepare for potential cyber threats.
Research