Ευρωπαϊκή Οδηγία (ΕΕ) NIS2 2022/2555
EU Directive NIS2 2022/2555
View/
Keywords
Οδηγία NIS 2 ; Κυβερνοασφάλεια ; Ευρωπαϊκή Ένωση ; Κανονιστικό πλαίσιο ; Κρίσιμες υποδομέςAbstract
This thesis focuses on the NIS 2 Directive of the European Union, which has as its primary objective the enhancement of the protection of networks and information systems from the ever-increasing cyber threats. Starting with a brief historical review and an assessment of the weaknesses of the previous framework, the need for a more stringent and effective regulatory mechanism is highlighted. It then outlines the key changes brought by NIS 2: the broader scope, the inclusion of new critical sectors, increased security and governance requirements, and new control and sanction mechanisms. At the same time, a comparison is made with other major European initiatives, such as the CER Directive, the DORA Regulation and the AI Act, to reflect the wider regulatory landscape in the European Union. Emphasis is placed on the implementation of the Directive, both in Member States and in third countries directly affected, and the challenges faced by organizations in order to comply. In addition, issues such as the need to enhance business continuity, preparation for crisis management, protection of information assets, and the importance of governance in the field of information security are discussed. Emphasis is also placed on cooperation with third parties and vendors, human resources management with a focus on staff awareness and training, and the continuous improvement of cybersecurity policies and procedures. The paper concludes with key conclusions and considerations for future developments, highlighting the role of NIS 2 in the transition towards a more secure, collaborative and digitally mature European Union.