Cybersecurity for companies: NIS 2 Directive and ISO 27001

This presentation examines the NIS 2 Directive (EU 2022/2555) and its significance for the cybersecurity of companies in the EU, which must be transposed into national law by October 2024. It discusses which companies are affected and what obligations result from this. ISO 27001, which defines the current standards for information security management systems, is also discussed. Finally, it is examined whether ISO 27001 certification complies with the NIS 2 requirements.