The EU cybersecurity framework has expanded significantly since the first Directive on measures for a high common level of cybersecurity across the EU (NIS) was adopted in 2016.
While the initiatives are intended to complement each other, certain sectors may need to navigate several of them. For example, the security of telecoms networks and services is regulated under the NIS2 Directive. However, telecoms operators should also consider specific requirements for 5G following the implementation of the 5G risk management toolbox.
Cullen International published a cheat sheet outlining how the various EU cybersecurity initiatives adopted thus far work together to strengthen the security and resilience of critical sectors at EU level.
Clients of our European Digital Economy service, can also access it directly on our client portal via the following link:
more news
10 July 25
WhatsApp and other communication apps must allow legal interception in less than half of the EU countries
Our new pan-European benchmark examines national rules of lawful interception obligations for number-independent interpersonal communications service providers, such as WhatsApp.
09 July 25
Countries tighten IoT rules with new security, numbering and device measures
Our Quarterly Regulatory Update on IoT and M2M Services (Q2 2025) highlights how national regulators are shaping the future of IoT and M2M services in areas such as cross-border connectivity, device regulation, and security.
08 July 25
Copper decommissioning emerges as critical challenge in global transition to gigabit networks
Our latest Global Trends report examines how 15 major markets are approaching the transition from legacy copper infrastructure to future-proof gigabit networks.