Cullen International is tracking the progress made by the 27 EU member states in transposing the Revised Directive on the Security of Network and Information Systems (NIS2).
EU member states have until 17 October 2024 to transpose the NIS2, which replaces the existing NIS Directive.
Among the countries surveyed, 11 moved forward with the transposition of the NIS2, but only Hungary transposed the directive into national law.
Some member states already published draft NIS2 transposition laws, including Belgium, Croatia and Finland.
Other countries such as Austria, France and Germany initiated public consultations to implement the directive into national law.
The NIS2 sets out cybersecurity risk-management and reporting obligations for large and medium-sized entities operating in critical sectors in the EU (e.g. telecoms, cloud).
For more information on the benchmark and Cullen's complete NIS2 coverage, please click on “Access the full content” - or on “Request Access”, in case you are not subscribed to our European Digital Economy service.
more news
02 May 24
Will tower companies take control of all mobile operators’ towers in Europe?
Two-thirds of mobile network operators in 12 analysed countries sold some or all of their towers to tower companies or funds. Cullen International’s benchmark analyses the activity of tower companies in 12 European countries.
26 April 24
Have member states transposed the EU collective redress rules?
Our new benchmark shows the status of transposition of the Collective Redress Directive in 17 EU countries. The research also includes information on recent collective redress actions against digital companies and telecoms providers.
25 April 24
[Cullen Explainer] Capital and purchased goods amount to most scope 3 emissions of telecoms operators
Our latest Explainer looks into scope 3 emissions, focusing on the reporting practices of telecoms operators.