A woman working with a tablet

One year to go: Preparing for NIS2 isn’t a compliance exercise – it’s a business opportunity

Mike Hughes

Mike Hughes

Business Group Director, Security at Microsoft Western Europe

Read Time, 3 min.

I recently read an insight from IDC that suggests addressing cybersecurity threats is the top board priority worldwide. Further, CEOs of large firms say security is their most important expenditure.

It was interesting to see the international consensus here. Certainly, in my work with Microsoft’s customers in Western Europe, I know cybersecurity is very much top of mind among the c-suite and IT leaders alike.

As of 2022 Europe faces a shortage of around 500,000 skilled cybersecurity professionals (up from 200,000 in 2021). What’s more, the threat landscape continues to evolve. The Microsoft Digital Defense Report shows that nation state attacks have increase d in the region, and bad actors are increasingly targeting essential services like energy, agriculture, transportation.

Getting NIS2-ready is ultimately a business opportunity.

It’s in this context that the EU is implementing the most comprehensive EU cybersecurity legislation to date: Network and Information Systems Directive 2 (NIS2). Set to come into effect in one year from now in October 2024, the purpose of NIS2 is to establish a baseline of cybersecurity measures for organizations that provide essential services.

160,000 companies across 18 sectors will be expected to comply. Municipalities, healthcare systems, financial services and manufacturing firms are a few examples.

It’s a comprehensive blueprint for cybersecurity resilience.

In fact, I’ve had conversations with colleagues and customers who have drawn parrels with GDPR. I think that’s a fair comparison. I also think GDPR offers some lessons that are instructive as companies prepare for NIS2 over the coming months.

NIS2 will help organizations ensure they are prepared to respond to the evolving threat landscape. That level of preparedness will only build trust among an organization’s customers, partners and stakeholders. This is exactly what we saw with GDPR. Clearly people and organizations only want to do business with those they trust.

Preparing for NIS2 isn’t a backroom IT issue – it calls for company-wide transformation.

Did you know that the median time for an attacker to begin moving within a corporate network after a single device is compromised is less than 2 hours? With criminals becoming more sophisticated, every person in an organization – from a factory floor manager to executives – needs the right skills and tools to recognize and effectively mitigate threats.

That said, many cybersecurity teams I work with are currently understaffed. It’s here where I see artificial intelligence (AI) tools playing an important role. This technology is augmenting the skills and experience of professionals, helping them identify and respond to threats with machine speed.

Again, just like with GDPR, preparing for NIS2 represents a transformation challenge – and opportunity – that will be as much about people as it is technology.

Successful transformation takes partnership.

The spirit behind NIS2 speaks to a simple truth: we can’t as a region address cybersecurity if we don’t work together. Collaboration across public and private sector organizations will be key. In addition, businesses will need trusted partners. Just as they would with any major transformation effort – as was the case with GDPR.

At Microsoft, the safety and security of our customers is our top priority. It’s why every product and service we create is “secure by design.” And behind our technology, we have a world-class team of cybersecurity professionals. Using AI, our teams can analyze trillions of pieces of cybersecurity data everyday – helping keep our customers safe and their businesses resilient.

We have a range of cybersecurity solutions that can help organizations with their NIS2 transformation journeys. With employee trainings, risk assessments, threat monitoring and incident alerts, we are committed to working with our customers to find the right tools and processes to prepare their businesses for NIS2 and beyond.

The bottom-line: Shoring up EU’s cybersecurity readiness is so much more than a compliance exercise. It’s an opportunity to build trust with your customers and maintain a competitive edge.

For more information on how Microsoft can help you get ready for NIS2 see Preparing for NIS2: More than a compliance exercise: an opportunity to future proof your organization.

Preparing for NIS2: 3 Guiding Principles for Leaders

Get started on your transformation today with three guiding principles for preparing for NIS2.

Discover more related articles per industry:


  • Pencil

    Hybrid learning and GDPR: maintaining security and compliance in disruptive times

    Like most areas of society, over the past six months the education sector has had to face challenges unlike any before. Students thrive when they have access to personalized learning. As schools have moved quickly to adapt to remote learning, using technology to create new experiences that meet students’ needs has become more important than […]

  • a woman sitting at a table using a laptop

    VSNU: coordinating a nationwide university digital transformation in one weekend

    “A lesson for us during this crisis, has been that new technology doesn’t just change how you work – it also changes people and culture, which is something you have to support everyone through.” Director of Accountability at The Association of Universities in the Netherlands (VSNU), Reinout Van Brakel, is talking about the instrumental role […]


  • a group of people performing on stage in front of a crowd

    City of Liège: Facilitating decision making in difficult times

    For many organizations, social-distancing measures brought about by COVID-19 have drastically slowed day-to-day operations – and for some, even stopped them altogether. But for local governments across Europe, like the Belgian city of Liège, slowing down hasn’t been an option.  From supporting citizens and businesses to protecting frontline workers, Liège city had to quickly provide stability during this crisis and ensure important decisions could still be made in a democratic […]

  • a group of people standing next to a dog

    Belgian police force completes secure, mobile-first transformation

    Information sharing is now much easier for officers and support staff – thanks to Microsoft Teams on a powerful and secure digital platform.



  • Mais on a sunny day

    COFCO International: How cloud technologies ensured business continuity during challenging times

    “I have worked at COFCO for 12 years, always in an office. But I have spent the last 63 days working from home.” Marcus Seelbach, Chief HR Officer at global agribusiness COFCO International, is talking from his home via video call about the transition he and all his colleagues have undergone since COVID-19 led to the closure of the company’s offices worldwide. “But thanks to the preparation and […]

  • a woman smiling for the camera

    Etex Group: Future-proofing employees to work anywhere across the world

    When COVID-19 spread across Europe in early 2020, businesses entered a new digitally-dependent age. Social distancing measures had asked offices of all shapes and sizes to close their doors, sparking organizations to quickly find other virtual ways for colleagues to meet and collaborate remotely. But for Belgium building material specialist Etex, this was a step they were ready for – having already implemented a cloud-based infrastructure and collaboration tools […]


  • HeadBrands is ready for the future with Microsoft 365 Business

    HeadBrands is ready for the future with Microsoft 365 Business

    Since its creation in 2010, HeadBrands has continued to grow, rapidly becoming the leading retailer of hairdressing products in Scandinavia. HeadBrands needed a modern IT solution to increase its business productivity and improve collaboration, both within the company and externally. Its response to this challenge was to replace most of its previous services with Microsoft […]

  • GDPR and Retail: Four GDPR requirements and how Microsoft can help

    GDPR and Retail: Four GDPR requirements and how Microsoft can help

    Learn how we can help you meet GDPR requirements with solutions available today: Assessing your current risk profile “How do I understand where I am already compliant and where I need to focus next?” This is one of the most common questions from retailers in regard to the GDPR. It’s also one of the hardest to […]

Discover more related articles per dossier:

Customer Stories

  • A smiling man wearing glasses looking at the camera

    HUS: sharing data securely to make life-saving decisions

    Illnesses and diseases don’t often play fair – an unfortunate truth that was proved by the COVID-19 outbreak in early 2020, heavily hitting healthcare organizations with challenges the world hadn’t seen in a century. Hospitals needed a rapid response to reduce spreading the virus without affecting patient care. A high-pressure situation for any institution, but […]

Digital Transformation

  • A group of students in front of a school

    PCOU Willibrord uses smart automation to define the future of education

    “It’s all about teaching and giving time to the educators, so they can give time to the students. If we can make IT simple, that’s my purpose, my thing.” Peter Schep, ICT Manager at PCOU Willibrord Foundation, explains why he believes efficient IT is central to the learning and development of both educators and students. […]

Security & Privacy

  • a group of people looking at a laptop

    Securing your business when staff are working from home 

    In times like these, cyber security may not be at the top of our priority lists. But it’s important to be aware of the threats that switching from on-premises to remote working conditions pose to organizations across the world. As we seek to rapidly deploy cloud-based collaboration services to help professionals work from home, we […]


  • a group of people sitting at a table

    A single collaboration hub to help sales soar

    Do you know Microsoft’s secret to sales success? Collaboration. It’s at the heart of its culture and solutions. Today, companies investing in teamwork are five times more likely to be high-performing, so collaboration could be the difference between profit and loss. When compared to five years ago, an average information worker spends 50% more time […]