(TR08) (INCYBER) How do we manage NIS 2 compliance and maintain it over time?

Expanding the scope of NIS 2 to include more business sectors will help raise the level of cybersecurity in Europe and bring about a significant paradigm shift. While threats are focused on vulnerabilities way down the chain, the digitalization of supply chains is opening up security holes. One of the aims of the NIS 2 directive is therefore to improve cybersecurity among supply chain operators and thereby limit the risk of rebound attacks. What measures do the organizations affected need to take? What are the consequences of non-compliance with NIS 2 rules? How should supply chain and value chain incidents be managed? How do we ensure long-term compliance?