Experts have raised serious concerns about organizations' readiness to comply with the EU's Network and Information Security (NIS)2 Directive, with confusion among audience members just a week before the deadline about the directive's applicability, especially with the expanded scope under NIS2 to include more sectors; there is significant variation in NIS2 readiness among EU member states, impacting the directive's effectiveness and leaving organizations potentially exposed to penalties despite national legislation transposition issues; achieving NIS2 compliance will require significant investment for impacted organizations, while failing to comply could result in substantial fines and liability on senior management, emphasizing the need for urgent external advice and engagement with competent authorities to confirm compliance requirements.
https://www.infosecurity-magazine.com/news/nis2-confusion-concerns-deadline/