This website uses cookies. View our cookie policy
United Kingdom
Select regional store:

NIS Directive compliance

The UK’s NIS Regulations (Network and Information Systems Regulations 2018), derived from the EU’s NIS Directive (Directive on security of network and information systems), requires OES (operators of essential services) and DSPs (digital service providers) to implement appropriate security measures to protect and ensure the continuity of services that are essential to critical infrastructure. The Regulations were enforced on 10 May 2018. 

Which sectors must comply with the NIS Regulations?

The NIS Regulations apply to certain OES in the following sectors:

  • Energy 
  • Transport
  • Health 
  • Water
  • Digital infrastructure

For DSPs, the following are within scope:

  • Online search engines 
  • Cloud computing services 
  • Online marketplaces
Click here to download our free green paper on how your organisation can prepare for compliance >>​

NIS Directive/NIS Regulations compliance information

Start your compliance project with an NIS Regulations Gap Analysis >>​

Consequences for non-compliance

In the UK, organisations found to be non-compliant can be fined up to £17 million.

NIS Regulations Gap Analysis

Assess your cyber security posture against the requirements of the NIS Regulations and identify a practical route to implementing your compliance project. Suitable for both OES and DSPs.

Get started with your NIS Regulations compliance project >>

Free NIS Regulations resources

Speak to a NIS Regulations expert

Please contact our NIS Regulations team for advice and guidance on our products and services.