The NIS2 Directive, which aims to establish a high common level of cybersecurity across the EU, is being transposed at varying speeds and approaches by EU member states.
Thus far, 15 of the 27 EU countries have adopted national legislation to implement NIS2.
Cullen International’s assessment of 18 member states also reveals differences in how key aspects of the directive are being transposed. For example, some countries (e.g. the Czech Republic and Spain) could expand the scope of sectors covered by NIS2.
In nine of the surveyed countries, the telecoms sector remains under the supervision of the national regulatory authority (NRA).
Additionally, the research identifies national authorities responsible for oversight, cybersecurity incident response, and coordination within the digital sectors.
For more information on the benchmark and Cullen International's complete NIS2 coverage, please click on “Access the full content” - or on “Request Access”, in case you are not subscribed to our European Digital Economy service.
more news
20 May 26
Spectrum sharing in Europe
Spectrum is a scarce resource and can be used more efficiently when multiple users agree to share it. Cullen International designed two new benchmarks that examine the regulation and practice of spectrum sharing in 21 European countries.
13 May 26
Protection of minors: national rules to protect minors from exposure to pornographic content in Europe
Our latest benchmark shows the initiatives proposed or in place in selected European countries to control or restrict the exposure of minors to online pornographic content.
12 May 26
Some EU member states pre-empt EU level small parcel handling fee
Our new benchmark shows whether EU member states are applying a specific small parcel handling fee, compares fee levels, the legal basis, collection mechanisms, and implementation status.