NIS2 countdown: One and a half months to register

By: Trademagazin Date: 2024. 05. 15. 11:22

The NIS2 directive sets out a number of requirements for the cyber and information security of the EU member states. In Hungary, the “2023. XXIII Act on Cyber Security Certification and Cyber Security Supervision”, i.e. the “Cyber Science Act”, implements the provisions of the directive, according to which the companies concerned must register by June 30, 2024, on the online interface designated by the Supervisory Authority for Regulated Activities (SZTFH).

Among other things, NIS2 calls for the introduction of a comprehensive cyber security risk management and cyber incident management framework with the aim of increasing the overall level of cyber resilience within the EU. Although the implementing decree is not yet known, the approach of the first important deadline – June 30 – makes it necessary to define the foundations of the system for effective preparation. For this, first of all, it must be determined to what extent the decree and the relevant Hungarian legislation will apply to the activities of a given company, and to which area of it. Based on the evaluation of the risks and the business impact analysis, the security classification can then be prepared, and then the deviation analysis can be carried out.