On 9 December 2024, the European Union Agency for Cybersecurity (ENISA) closes a public consultation on the draft guidance on European Commission Implementing Regulation (EU) 2024/2690 of 17 October 2024, laying down rules for the application of Directive (EU) 2022/2555 as regards technical and methodological requirements of cybersecurity risk-management measures. The technical guidance aims to assist European Union (EU) Member States and entities in meeting the requirements of Network and Information Systems Directive 2 (NIS2) by offering practical advice, examples of compliance evidence, and mappings to relevant European, international, and national standards. The consultation period allows stakeholders, including industry representatives, to review and provide feedback on the draft guidance to ensure its relevance and usability. ENISA will incorporate the feedback into the finalised technical guidance to enhance its effectiveness in supporting cybersecurity compliance.
Original source