/content/honeywellbt/us/en/search.html
    title
    subtitle

    Understand and Achieve NIS2 Directive Compliance

    Organizations must be in compliance with the European Union’s NIS2 Directive

    Is Your Organization Ready to Comply with NIS2 Regulations?

    The European Union established the NIS2 Directive in 2022 to keep critical infrastructure companies and OT environments safer from cyber-attacks. Compliance with this directive is crucial for keeping operations running, avoiding penalties and keeping your people and assets safe. Honeywell has solutions designed to assist your organization’s push toward compliance with NIS2 before the October 2027 review deadline.

    Honeywell CSO Chase Carpenter on the NIS 2 Directive

    Honeywell Chief Security Officer Chase Carpenter talks about the impact of the new mandatory European Union Directive on Security of Network and Information Systems (NIS2)

    Navigating the NIS 2 Directive

    The NIS 2 Directive is crucial EU legislation designed to help enhance cybersecurity for operational technology (OT) systems in critical infrastructure, setting new standards across EU member states and promoting proactive measures to help improve business continuity and resilience against evolving cyber threats.

    Governance icon
    Governance icon
    Governance 

    The NIS 2 Directive establishes a comprehensive framework to ensure that entities critical to cybersecurity maintain stringent governance standards, emphasizing accountability of management bodies, mandating their active involvement in approving and overseeing cybersecurity risk management measures.

    Risk Management icon
    Risk Management icon
    Risk Management

    Entities must establish robust risk management policies and practices, including preparedness exercises, business continuity plans, secure supply chains, and multifactor authentication and encryption to help protect OT systems. 

    Reporting obligations icon
    Reporting obligations icon
    Reporting Obligations

    The Directive requires the formation of a cybersecurity incident response team (CSIRT) to handle and report significant cyber incidents to authorities quickly, ensuring effective and prompt incident management.

    Advanced Monitoring icon
    Advanced Monitoring icon
    Incident Detection and Response

    Entities must establish robust incident-handling protocols. Tabletop exercises can help test and enhance readiness through simulations of realistic cyber scenarios. 

    Sectors Affected by the NIS2 Directive

    The NIS2 directive currently impacts 15 sectors, including:

    • Chemicals
    • Digital infrastructure
    • Digital providers
    • Energy
    • Finance
    • Food
    • Health
    • Manufacturing
    • Postal services
    • Public administration
    • Research
    • Space
    • Transport
    • Waste management
    • Water supply

    Key Resources

    Whitepaper
    Navigating The NIS2 Directive
    Read More
    VIDEO
    How The NIS2 Directive Effects Our Customers In The European Union
    Watch Now
    Video
    OT Cybersecurity Consulting Services from Honeywell
    Watch Now
    Report
    2025 USB Threat Report
    Read More

    Your OT Cybersecurity Journey Starts Here

    We're ready to help you improve your OT cybersecure defense.