Two years into force, CCIA believes that the NIS Directive has contributed to a higher level of security of network and information systems. Above all, the principles and foundations of the EU’s first cybersecurity legislation remain valid.
However, the implementation of the Directive greatly varies from one Member State to another. CCIA encourages the European Commission to focus its efforts on improving the existing framework and resolving the shortcomings of its implementation, through greater harmonisation, the introduction of a one-stop-shop for all cross-border services, and incentives for voluntary data sharing.
The European Commission is expected to propose an update of the NIS Directive in mid-December.