Summary
- New EU regulations require businesses to enhance cyber defenses but many member states have not adopted the rules
- NIS 2 cybersecurity directive sets high standards for internal cybersecurity systems and practices
- Most EU countries have yet to implement NIS 2 in national laws, leading to spotty enforcement
- Non-compliance with NIS 2 can result in fines or service suspension