In 2016, the European Union introduced the Network and Information Security (NIS or NIS1) Directive. Its main objectives were to improve the cybersecurity capabilities of member states, strengthen collaboration among national cybersecurity authorities across Europe, and incorporate cybersecurity into organizations in key industry sectors.

The threat landscape is constantly evolving, so to address changes and emerging vulnerabilities since 2016, the European Union adopted the revised Network and Information Security Directive (NIS2) in January 2023.

In this two-part blog, we focus on the cybersecurity measures that the new directive imposes on European companies, specifically multi-factor authentication for the workforce. Here in part one, we provide an overview of the NIS2 Directive and in part two, review the requirements.