The NIS2 Directive now covers medium and large entities from more sectors that are critical for the economy and society, including providers of public electronic communications services, digital services, wastewater and waste management, space, manufacturing of critical products, postal and courier services and public administration.
By 17 October, the Commission will adopt an implementing act to lay down the technical and the methodological requirements of the cybersecurity risk-management measures for some entities in the digital infrastructures, digital providers, and ICT service management (business-to-business) sectors.
The draft implementing act is open for public feedback via the Have Your Say portal for 4 weeks.