What you need to know about NIS2
Upskill your team & remain compliant
Fleur Meuleman & Bob Armstrong
09 August, 2024
In November 2022, the EU Parliament introduced the Network and Information Security Directive, also known as NIS2, an EU Cyber Security law that updates the original NIS Directive (NISD). According to the European Union, more than 100,000 organizations must implement these new Cyber Security standards by October 2024.
Why was NIS2 introduced?
NIS2 was introduced in response to increasing digitalization and increasing Cyber Security threats from the COVID-19 pandemic and the war between Russia and Ukraine.
NIS2 aims to achieve a high level of security across the EU by protecting critical EU infrastructures against cyber threats. The ultimate goal of NIS2 is to improve Europe's cyber security in the long term, requiring more companies and sectors to adopt cyber security measures.
NIS2 aims to:
- Create consistent Cyber Security rules and sanctions across the EU
- Enforce stricter security requirements for a wider range of organizations and sectors
- Simplify reporting
- Improve Cyber Security standards and practices across the continent
Who does NIS2 apply to?
NIS2 applies to any organization with more than 50 employees or €10 million in annual turnover which operates in a sector categorized as 'essential and important.'
Organizations that met the requirements of the previous NIS Directive also meet the NIS2 mandates; these sectors include healthcare, transportation, and banking and finance. In addition, food production, processing and distribution, postal and courier services, and manufacturing and digital providers also meet NIS2 requirements.
How can you prepare for NIS2?
NIS2 emphasizes the importance of Cyber Security in the EU space and, with it, the need to have skilled professionals and a highly prepared, cyber-resilient workforce.
At Firebrand, we offer 3 certifications specifically focused on NIS2:
- PECB ISO NIS2 Directive Foundation
- PECB ISO NIS2 Directive 2.0 Lead Implementer
- NIS2 Directive Trained Professional Program
Let's take a look at each one.
1. PECB ISO NIS2 Directive Foundation
This accelerated course is an introduction to NIS2 in critical infrastructure sectors such as energy, transport, healthcare, and digital.
The course helps you understand the NIS2 requirements and plan the implementation and management of cybersecurity programs to become compliant.
There are no prerequisites to attend this course; Government and regulatory officials responsible for enforcing NIS2, IT professionals, and Cyber Security professionals can greatly benefit from this course.
At Firebrand, PECB NIS 2 Directive Foundation takes only 1 day. Find out more.
2. PECB ISO NIS2 Directive 2.0 Lead Implementer
A more in-depth course than the first on our list, the PECB Lead Implementer helps you develop the skills you need to implement cyber security measures, develop incident response capabilities, establish risk management frameworks, conduct risk assessments, and more.
At the end of this course, you can sit the official PECB exam and achieve your NIS 2 Directive Lead Implementer certification.
This course takes only 3 days and is ideal for professionals in critical infrastructure sectors. Find out more.
3. NIS2 Directive Trained Professional Program
Last but not least, the NIS 2 Directive Trained Professional course developed by Cyber Risk GMBH is aimed at Risk and Compliance professionals including managers, auditors, consultants, suppliers, service providers, and more, who work for EU companies that have to comply with NIS2 or non-EU companies with operations in EU Member States.
This comprehensive 3-day course takes you through Cyber Security policies, Incident handling, Business continuity (including disaster recovery and crisis management), Supply chain security, Cyber hygiene practices, cryptography encryption, HR security, asset management, and more.
At the end of this course, you’ll sit the official Cyber Risk GMBH exam and return to work certified. See the full course spec.
What is Firebrand?
For the past 13 years in a row, we’ve been named one of the Top 20 IT Training Companies in the World.
We specialise in accelerated training that helps you become competent, confident, and certified at twice the speed.
We offer Cyber Security certification courses from top IT vendors such as ISC2, ISACA, Microsoft, EC-Council, and many more.
Could one of them be right for you, or your team?