The NIS2 Directive raises the bar for cybersecurity, governance, and accountability across public and private organisations in the EU.
On this page, you’ll find clear explanations, resources, and insights into what NIS2 requires — and how Echo helps you translate regulation into continuous compliance and operational resilience.
What is NIS2
The NIS2 Directive (Directive (EU) 2022/2555) is the EU’s most comprehensive cybersecurity law to date. It builds on the original NIS Directive from 2016 and was formally adopted in December 2022.
Its purpose is to create a high common level of cybersecurity across the EU, reducing risks to critical services and supply chains, and strengthening trust between Member States.
Who is covered?
NIS2 significantly broadens the scope compared to the original NIS Directive:
-
Essential entities – sectors critical to society and the economy, such as energy, transport, health, drinking water, wastewater, digital infrastructure, ICT providers, public administration, and space.
-
Important entities – other key sectors like postal and courier services, waste management, chemicals, food production, manufacturing of critical products, and providers of digital services (online marketplaces, search engines, cloud computing).
Both public sector bodies (including municipalities) and private companies in these sectors are subject to NIS2 if they exceed certain size thresholds (generally >50 employees and >€10 million turnover).
Sources:
-
European Commission – NIS2 Directive overview
What is required?
NIS2 imposes stricter rules on:
-
Risk management – policies covering risk analysis, supply chain security, incident handling, encryption, access controls, and asset management.
-
Incident reporting – early warning within 24 hours, initial assessment within 72 hours, and final report within 1 month.
-
Governance – management bodies are made accountable for compliance and can be held liable.
-
Cooperation – entities must cooperate with national authorities and Computer Security Incident Response Teams (CSIRTs).
How Echo supports NIS2
See exactly how Echo helps you meet NIS2 requirements.
Each row in the table shows how Echo maps directly to the key articles in the directive — turning regulation into practical, ongoing compliance.
Why it watters
With Echo, municipalities and organisations can move from theory to practice:
Closing the compliance gap that traditional endpoint tools leave behind.
Aligning directly with the NIS2 directive’s requirements for visibility, resilience, and accountability.
Ensuring that compliance is not just a snapshot — but a continuous, verifiable process.
Echo turns NIS2 compliance into a built-in capability, not a one-off task.
Resources & downloads
Learn how Echo supports NIS2 compliance — and explore practical tools and insights to guide your journey.
NIS2: EU vs. Denmark
Discover the key differences between the EU directive and Denmark’s implementation — and what they mean for your compliance journey.
NIS2 and school laptops
This paper provides concrete insights into how Echo helps ensure full visibility, compliance, and continuity across thousands of school laptops — from day one and throughout the entire lifecycle.
NIS2 Readiness Guide
This practical guide walks you through the 5 most critical questions your organisation must be able to answer to comply with the NIS2 directive. From full device visibility to executive accountability and incident reporting – use this guide to identify blind spots and take the first step toward robust cyber resilience.
Achieving NIS2 with Echo
Our whitepaper “Achieving NIS2 Compliance with Echo” shows how Echo helps organisations stay compliant — even when devices are reset, reinstalled, or offline.
FAQ: NIS2 Compliance
Explore the most frequently asked questions — and learn how persistent device control plays a key role in meeting NIS2 requirements.
Want to know more?
We understand what NIS2 means for your organisation — and how Echo enables continuous compliance, persistent device visibility, and full lifecycle control.
Get in touch with our NIS2 experts.
