What does NIS2 mean and does it affect my company?

The NIS2 Directive, short for Network and Information Systems Directive 2, is a European directive on cyber security. It aims to strengthen the security of network and information systems in the European Union. NIS2 is a further development of the original NIS Directive and contains provisions for reporting security incidents, improving cooperation between member states and strengthening the cyber security of critical infrastructures. It sets out requirements for operators of essential services and digital service providers to increase their resilience to cyber attacks. Its scope of application covers companies with 50 or more employees and must be implemented by around 30,000 companies in Germany by October 2024, not just in the critical infrastructure sector.