NIS Directive compliance
The UK’s NIS Regulations (Network and Information Systems Regulations 2018), derived from the EU’s NIS Directive (Directive on security of network and information systems), requires OES (operators of essential services) and DSPs (digital service providers) to implement appropriate security measures to protect and ensure the continuity of services that are essential to critical infrastructure. The Regulations were enforced on 10 May 2018.
Which sectors must comply with the NIS Regulations?
The NIS Regulations apply to certain OES in the following sectors:
- Digital infrastructure
For DSPs, the following are within scope:
Click here to download our free green paper on how your organisation can prepare for compliance >>
- Online search engines
- Cloud computing services
- Online marketplaces
NIS Directive/NIS Regulations compliance information
Start your compliance project with an NIS Regulations Gap Analysis >>
Consequences for non-compliance
In the UK, organisations found to be non-compliant can be fined up to £17 million.
NIS Regulations Gap Analysis
Assess your cyber security posture against the requirements of the NIS Regulations and identify a practical route to implementing your compliance project. Suitable for both OES and DSPs.
Get started with your NIS Regulations compliance project >>
Free NIS Regulations resources
Speak to a NIS Regulations expert
Please contact our NIS Regulations team for advice and guidance on our products and services.