October has seen the enforcement deadline of the EU's new NIS2 Directive for cybersecurity come into effect - although currently only six member states are actually fully compliant with it. Tim Wright, partner and technology lawyer at Fladgate points out that "At one end of the scale, countries such as Belgium, Croatia, Hungary and Latvia have already adopted NIS2-compliant legislation, whilst at the other end, countries such as Bulgaria, Estonia, and Portugal appear to have made little to no progress in the transposition process."

Should UK organisations be concerned about the ramifications of NIS2 then, when even EU member states are missing its deadlines? According to a new survey from Veeam Software only 43% of EMEA IT decision-makers believe NIS2 will significantly enhance EU cybersecurity - even though 90% of respondents also reported at least one security incident that the NIS2 directive could have prevented in the past 12 months. In fact 44% of the 500+ IT decision-makers from Belgium, France, Germany, the Netherlands, and the UK surveyed stated that they had experienced more than three cyber incidents in the past year, with 65% of those categorised as 'highly critical'.

"A staggering 66% of businesses were set to miss the NIS2 compliance deadline," commented Edwin Weijdema, EMEA Field CTO at Veeam. "Business leaders worldwide should harbour no illusions about the gravity of non-compliance and the resulting impact on their business, including revenue and overall operations. In addition, failure to comply with NIS2 could have severe personal repercussions for C-suite executives."

And as Horizon3.ai's Keith Poyser explains in this issue of the newsletter, "Many more UK organisations than you might expect collaborate with European partners, and UK organisations must act swiftly to determine if the NIS2 Directive applies to their operations."

To make sure you get your copy of the Newsletter emailed to you personally, every time, click here to register.