The NIS-2 guidelines will come into force in a few months and are currently on everyone's lips. The numerous lectures and events on this topic not only underline its importance, but also show that there is still a great need for information among those responsible and decision-makers.
The October deadline is approaching inexorably, and it is of the utmost importance that companies prepare and implement their action strategies now. In principle, the NIS 2 Directive represents a significant step towards improving security standards in companies. The regulations contain clear standards that must be achieved and implemented. They help everyone to protect themselves better and provide concrete recommendations for action. Our look at the industry shows that many companies understand the urgency of the measures and also see the need to protect themselves accordingly.
However, many people are still wondering how to implement it correctly. In many places, there is still uncertainty among security officers just before the deadline. For smaller companies with up to 50 employees, external help in implementing the NIS-2 requirements can therefore be very useful. Large companies usually have the necessary expertise in-house, but should still have their strategies and plans reviewed by external experts to ensure that all requirements are met.
Basic practices for NIS-2
The specific approach will vary from company to company, but there are two practices that will underpin any mature strategy to improve corporate cyber resilience. One of these is securing accounts by implementing multi-factor authentication (MFA) instead of passwords, as modern cyberattacks can easily overcome passwords. However, not all MFA methods are the same: hardware security keys offer better and more phishing-resistant protection here.
The second essential aspect of cybersecurity is protecting critical data through encryption. Even if attackers penetrate a system, encryption makes it unlikely that they will be able to access relevant or
access critical data because they lack the private key to the data. The NIS 2 Directive may seem complex at first, but basic security measures are simple and worthwhile for long-term cyber resilience. Investing in these measures will prevent impending incidents in the future.
Yubico helps companies not only meet new legal requirements but also address broader cybersecurity challenges.
About Yubico
Yubico, creator of the YubiKey, provides the gold standard for phishing-resistant multi-factor authentication (MFA) that prevents account takeovers and makes secure logins easy and accessible to everyone. Since its founding in 2007, the company has helped set global standards for secure access to computers, mobile devices, servers, browsers and Internet accounts.
Matching articles on the topic