A woman working with a tablet

One year to go: Preparing for NIS2 isn’t a compliance exercise – it’s a business opportunity

Mike Hughes

Mike Hughes

Business Group Director, Security at Microsoft Western Europe

Read Time, 3 min.

I recently read an insight from IDC that suggests addressing cybersecurity threats is the top board priority worldwide. Further, CEOs of large firms say security is their most important expenditure.

It was interesting to see the international consensus here. Certainly, in my work with Microsoft’s customers in Western Europe, I know cybersecurity is very much top of mind among the c-suite and IT leaders alike.

As of 2022 Europe faces a shortage of around 500,000 skilled cybersecurity professionals (up from 200,000 in 2021). What’s more, the threat landscape continues to evolve. The Microsoft Digital Defense Report shows that nation state attacks have increase d in the region, and bad actors are increasingly targeting essential services like energy, agriculture, transportation.

Getting NIS2-ready is ultimately a business opportunity.

It’s in this context that the EU is implementing the most comprehensive EU cybersecurity legislation to date: Network and Information Systems Directive 2 (NIS2). Set to come into effect in one year from now in October 2024, the purpose of NIS2 is to establish a baseline of cybersecurity measures for organizations that provide essential services.

160,000 companies across 18 sectors will be expected to comply. Municipalities, healthcare systems, financial services and manufacturing firms are a few examples.

It’s a comprehensive blueprint for cybersecurity resilience.

In fact, I’ve had conversations with colleagues and customers who have drawn parrels with GDPR. I think that’s a fair comparison. I also think GDPR offers some lessons that are instructive as companies prepare for NIS2 over the coming months.

NIS2 will help organizations ensure they are prepared to respond to the evolving threat landscape. That level of preparedness will only build trust among an organization’s customers, partners and stakeholders. This is exactly what we saw with GDPR. Clearly people and organizations only want to do business with those they trust.

Preparing for NIS2 isn’t a backroom IT issue – it calls for company-wide transformation.

Did you know that the median time for an attacker to begin moving within a corporate network after a single device is compromised is less than 2 hours? With criminals becoming more sophisticated, every person in an organization – from a factory floor manager to executives – needs the right skills and tools to recognize and effectively mitigate threats.

That said, many cybersecurity teams I work with are currently understaffed. It’s here where I see artificial intelligence (AI) tools playing an important role. This technology is augmenting the skills and experience of professionals, helping them identify and respond to threats with machine speed.

Again, just like with GDPR, preparing for NIS2 represents a transformation challenge – and opportunity – that will be as much about people as it is technology.

Successful transformation takes partnership.

The spirit behind NIS2 speaks to a simple truth: we can’t as a region address cybersecurity if we don’t work together. Collaboration across public and private sector organizations will be key. In addition, businesses will need trusted partners. Just as they would with any major transformation effort – as was the case with GDPR.

At Microsoft, the safety and security of our customers is our top priority. It’s why every product and service we create is “secure by design.” And behind our technology, we have a world-class team of cybersecurity professionals. Using AI, our teams can analyze trillions of pieces of cybersecurity data everyday – helping keep our customers safe and their businesses resilient.

We have a range of cybersecurity solutions that can help organizations with their NIS2 transformation journeys. With employee trainings, risk assessments, threat monitoring and incident alerts, we are committed to working with our customers to find the right tools and processes to prepare their businesses for NIS2 and beyond.

The bottom-line: Shoring up EU’s cybersecurity readiness is so much more than a compliance exercise. It’s an opportunity to build trust with your customers and maintain a competitive edge.

For more information on how Microsoft can help you get ready for NIS2 see Preparing for NIS2: More than a compliance exercise: an opportunity to future proof your organization.

Preparing for NIS2: 3 Guiding Principles for Leaders

Get started on your transformation today with three guiding principles for preparing for NIS2.

Discover more related articles per industry:

Education

Government

  • Iceland runs on Trust

    How the cloud helped a small nation realise big ambitions

    In December 2015, the Icelandic government kicked off a digital infrastructure review. With more than 100 different suppliers managed by over 100 IT managers in each public institution, the brief was clear; to simplify operations and streamline IT for over 20,000 users. The solution: Fast forward two and a half years, and a decision was […]

  • a man and two women standing in front of a brick building

    Ajuntament de Lleida: transforming the public sector with a modern, virtual workplace

    “At Ajuntament de Lleida, we think differently. We embrace new technology. And when we see that it could add real value to the work we do, we find a way to make it happen.” Carles GinéSabaté, Systems Implementation Planning Manager at Ajuntament de Lleida, is reflecting on his organization’s open-armed approach to digital transformation and […]

Healthcare

  • A smiling man wearing glasses looking at the camera

    HUS: sharing data securely to make life-saving decisions

    Illnesses and diseases don’t often play fair – an unfortunate truth that was proved by the COVID-19 outbreak in early 2020, heavily hitting healthcare organizations with challenges the world hadn’t seen in a century. Hospitals needed a rapid response to reduce spreading the virus without affecting patient care. A high-pressure situation for any institution, but […]

  • Two female healthcare professionals looking at a tablet

    Virtual Care webinar

    A discussion of the Virtual Care solutions made possible by Microsoft Teams – brought to life by a case study in Italy.

Manufacturing

  • a woman smiling for the camera

    Etex Group: Future-proofing employees to work anywhere across the world

    When COVID-19 spread across Europe in early 2020, businesses entered a new digitally-dependent age. Social distancing measures had asked offices of all shapes and sizes to close their doors, sparking organizations to quickly find other virtual ways for colleagues to meet and collaborate remotely. But for Belgium building material specialist Etex, this was a step they were ready for – having already implemented a cloud-based infrastructure and collaboration tools […]

  • Mais on a sunny day

    COFCO International: How cloud technologies ensured business continuity during challenging times

    “I have worked at COFCO for 12 years, always in an office. But I have spent the last 63 days working from home.” Marcus Seelbach, Chief HR Officer at global agribusiness COFCO International, is talking from his home via video call about the transition he and all his colleagues have undergone since COVID-19 led to the closure of the company’s offices worldwide. “But thanks to the preparation and […]

Retail

Discover more related articles per dossier:

Customer Stories

Digital Transformation

  • A PC monitor and a laptop

    Walking before you run: is your workplace ready for GenAI?

    In all the excitement around the potential of generative AI, it’s easy to focus on one misleading question. Business leaders don’t really need to ask themselves whether their organization should use generative AI. With findings from the IDC showing that organizations are realizing an average return of $3.5 for every $1 they’ve invested in generative […]

Security & Privacy

  • a close up of a logo

    Five things we learnt from the Security and Compliance Summit

    On November 4th 2020, Microsoft Western Europe hosted its first Security and Compliance Summit. Experts and Security Blackbelts from across Microsoft, including the Detection and Response Team and the Digital Crimes Unit, came together virtually to share perspectives on the latest security, compliance and privacy challenges that seek to compromise the modern workplace – a […]

Tips

  • a woman sitting at a table in front of a laptop

    3 key ways Microsoft Teams enriches higher education teaching and learning

    Whether remotely, in class or hybrid , Microsoft Teams helps to simplify and structure higher education’s day-to-day digital environment – integrating seamlessly with all the solutions you’re already using. “My teaching is now entirely based on Teams. The interaction with students and the teacher is a better level than traditional teaching” – Pasi Vahimaa, Professor, […]