Ensure compliance with laws and regulations
How has your organization prepared for the requirements set by the European Union-wide NIS2 Directive? The Law on Cybersecurity Risk Management will come into force in Finland in October 2024.
NIS2 is an extension of the previous NIS Directive which will be implemented in Finland as the Law on Cybersecurity Risk Management, coming into effect on 18th October 2024. The Directive encompasses a broader range of sectors considered critical for society than before, such as health and social services, energy, and manufacturing. This legislation aims to improve the cyber resilience of EU member states by allocating responsibility for cyber risk management to the leadership of organizations, as well as imposing requirements for measures to enhance cyber security.
The new legislation expands the obligations of critical operators to include, among other things, the supply chain, meaning your organization may be subject to requirements even if you do not belong to a sector classified as critical. The upcoming law mandates entities to report security incidents more broadly and promptly than before. Additionally, the law imposes significant penalties for failing to comply with obligations and grants supervisory authorities broader powers to enforce the law.
Service
We help ensure your organization’s compliance with the law by October 18, 2024, through the following means:
More information
Read the blog by Markus Asikainen, our Director of Cybersecurity Business, on the subject. The NIS2 Directive and the upcoming Law on Cybersecurity Risk Management – what are they all about?