ID-European-CIS-Directive

Compliance Guide: European NIS Directive

White Papers

Compliance Guide: European NIS Directive

Compliance Guide: European NIS Directive

Download Paper

ID-European-CIS-Directive

The aim of the NIS Directive is to create a higher level of cybersecurity in Europe. The Directive significantly affects digital service providers (DSPs) and operators of essential services (OESs). Operators of essential services include any organisations whose operations would be greatly affected in the case of a security breach if they engage in critical societal or economic activities.

Both DSP and OES must provide information that allows for an in-depth assessment of their information systems and security policies. The security requirements include technical measures that manage the risks of cybersecurity breaches in a preventative manner. The four NIS Objectives include:

  • Managing Security Risk
  • Protecting Against Cyber Attacks
  • Detecting Cyber Security Incidents
  • Minimizing Impact of Security Incidents

This guide provides an overview of these Objectives and select NIS Principles, as well as advice on implementing these best practices and procedures for your OT environments to proactively manage cyber risks.