Cybersecurity obligations for companies and authorities (NIS-2 implementation)

With this law, Germany implements an EU cybersecurity requirement, the so-called NIS-2-Richtlinie. Many companies and authorities will in future have to meet stricter security measures for their IT systems and report attacks more quickly. Cyberattacks cause German companies average annual losses of around 210.7 billion euros. The law is also intended to improve information security in the federal administration and introduce a central coordinator, the so-called CISO Bund.