{"id":2948,"date":"2026-03-16T04:47:24","date_gmt":"2026-03-16T03:47:24","guid":{"rendered":"https:\/\/www.seclab-security.com\/?post_type=avada_faq&#038;p=2948"},"modified":"2026-04-01T17:44:45","modified_gmt":"2026-04-01T15:44:45","slug":"what-is-the-nis2-directive-and-what-are-the-ot-obligations","status":"publish","type":"avada_faq","link":"https:\/\/www.seclab-security.com\/en\/faq-items\/what-is-the-nis2-directive-and-what-are-the-ot-obligations\/","title":{"rendered":"What is the NIS2 Directive and What Are the OT Obligations?"},"content":{"rendered":"<p><strong>The NIS2 Directive (Network and Information Security Directive 2)<\/strong> is the new European cybersecurity framework that entered into force in January 2023, with mandatory transposition into Member States. It replaces and strengthens the NIS1 Directive, significantly expanding its scope\u2014notably to OT infrastructure and supply chains.<\/p>\n<p class=\"text-text-100 mt-3 -mb-1 text-[1.125rem] font-bold\"><strong>Who Is Affected? <\/strong>NIS2 applies to <strong>essential entities<\/strong> and <strong>important entities<\/strong> across 18 sectors, including:<\/p>\n<ul>\n<li class=\"whitespace-normal break-words pl-2\"><strong>Energy<\/strong> (electricity, oil &amp; gas, hydrogen)<\/li>\n<li class=\"whitespace-normal break-words pl-2\"><strong>Transport<\/strong> (aviation, rail, maritime, road)<\/li>\n<li class=\"whitespace-normal break-words pl-2\"><strong>Healthcare<\/strong><\/li>\n<li class=\"whitespace-normal break-words pl-2\"><strong>Drinking Water &amp; Wastewater<\/strong><\/li>\n<li class=\"whitespace-normal break-words pl-2\"><strong>Digital Infrastructure<\/strong><\/li>\n<li class=\"whitespace-normal break-words pl-2\"><strong>Food &amp; Agriculture<\/strong><\/li>\n<li class=\"whitespace-normal break-words pl-2\"><strong>Manufacturing<\/strong> (chemicals, medical devices, electronics, etc.)<\/li>\n<\/ul>\n<p><strong>Specific OT Obligations:<\/strong><\/p>\n<ul>\n<li class=\"whitespace-normal break-words pl-2\"><strong>Risk Assessment:<\/strong> Explicitly cover OT systems and Cyber-Physical Systems (CPS)<\/li>\n<li class=\"whitespace-normal break-words pl-2\"><strong>State-of-the-Art Cybersecurity Measures:<\/strong> Asset management, network segmentation, incident detection, business continuity plans<\/li>\n<li class=\"whitespace-normal break-words pl-2\"><strong>Supply Chain Management:<\/strong> Secure relationships with suppliers and subcontractors with access to critical systems<\/li>\n<li class=\"whitespace-normal break-words pl-2\"><strong>Incident Notification:<\/strong> 24-hour early warning notification, followed by detailed reports within 72 hours and comprehensive assessments within 1 month<\/li>\n<li class=\"whitespace-normal break-words pl-2\"><strong>Governance:<\/strong> Executive leadership involvement, management training, and direct board-level supervision<\/li>\n<\/ul>\n<p class=\"text-text-100 mt-3 -mb-1 text-[1.125rem] font-bold\"><strong>Penalties: <\/strong>Up to <strong>\u20ac10 million<\/strong> or <strong>2% of global annual<\/strong> turnover for essential entities.<\/p>\n<p><b>Real Impact for OT:<\/b><span style=\"font-weight: 400;\"> NIS2 mandates measurable cyber maturity across industrial environments. It aligns with standards like IEC 62443 and requires treating OT with the same rigor as IT\u2014while respecting OT&#8217;s unique operational constraints.<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The NIS2 Directive (Network and Information Security Directive 2) is  [&#8230;]<\/p>\n","protected":false},"author":5,"featured_media":0,"menu_order":0,"comment_status":"open","ping_status":"closed","template":"","format":"standard","meta":{"footnotes":""},"faq_category":[78],"class_list":["post-2948","avada_faq","type-avada_faq","status-publish","format-standard","hentry","faq_category-home"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.2 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>What is the NIS2 Directive and What Are the OT Obligations? - Seclab Security<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.seclab-security.com\/en\/faq-items\/what-is-the-nis2-directive-and-what-are-the-ot-obligations\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What is the NIS2 Directive and What Are the OT Obligations? - Seclab Security\" \/>\n<meta property=\"og:description\" content=\"The NIS2 Directive (Network and Information Security Directive 2) is [...]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.seclab-security.com\/en\/faq-items\/what-is-the-nis2-directive-and-what-are-the-ot-obligations\/\" \/>\n<meta property=\"og:site_name\" content=\"Seclab Security\" \/>\n<meta property=\"article:modified_time\" content=\"2026-04-01T15:44:45+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.seclab-security.com\/en\/faq-items\/what-is-the-nis2-directive-and-what-are-the-ot-obligations\/\",\"url\":\"https:\/\/www.seclab-security.com\/en\/faq-items\/what-is-the-nis2-directive-and-what-are-the-ot-obligations\/\",\"name\":\"What is the NIS2 Directive and What Are the OT Obligations? - Seclab Security\",\"isPartOf\":{\"@id\":\"https:\/\/www.seclab-security.com\/en\/#website\"},\"datePublished\":\"2026-03-16T03:47:24+00:00\",\"dateModified\":\"2026-04-01T15:44:45+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.seclab-security.com\/en\/faq-items\/what-is-the-nis2-directive-and-what-are-the-ot-obligations\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.seclab-security.com\/en\/faq-items\/what-is-the-nis2-directive-and-what-are-the-ot-obligations\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.seclab-security.com\/en\/faq-items\/what-is-the-nis2-directive-and-what-are-the-ot-obligations\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\/\/www.seclab-security.com\/en\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"FAQs\",\"item\":\"https:\/\/www.seclab-security.com\/en\/faq-items\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"What is the NIS2 Directive and What Are the OT Obligations?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.seclab-security.com\/en\/#website\",\"url\":\"https:\/\/www.seclab-security.com\/en\/\",\"name\":\"Seclab Security\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/www.seclab-security.com\/en\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.seclab-security.com\/en\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.seclab-security.com\/en\/#organization\",\"name\":\"Seclab Security\",\"url\":\"https:\/\/www.seclab-security.com\/en\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.seclab-security.com\/en\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.seclab-security.com\/wp-content\/uploads\/2026\/03\/LOGO-SECLAB-BLACK-1-e1772644859613.png\",\"contentUrl\":\"https:\/\/www.seclab-security.com\/wp-content\/uploads\/2026\/03\/LOGO-SECLAB-BLACK-1-e1772644859613.png\",\"width\":250,\"height\":46,\"caption\":\"Seclab Security\"},\"image\":{\"@id\":\"https:\/\/www.seclab-security.com\/en\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What is the NIS2 Directive and What Are the OT Obligations? - Seclab Security","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.seclab-security.com\/en\/faq-items\/what-is-the-nis2-directive-and-what-are-the-ot-obligations\/","og_locale":"en_US","og_type":"article","og_title":"What is the NIS2 Directive and What Are the OT Obligations? - Seclab Security","og_description":"The NIS2 Directive (Network and Information Security Directive 2) is [...]","og_url":"https:\/\/www.seclab-security.com\/en\/faq-items\/what-is-the-nis2-directive-and-what-are-the-ot-obligations\/","og_site_name":"Seclab Security","article_modified_time":"2026-04-01T15:44:45+00:00","twitter_card":"summary_large_image","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.seclab-security.com\/en\/faq-items\/what-is-the-nis2-directive-and-what-are-the-ot-obligations\/","url":"https:\/\/www.seclab-security.com\/en\/faq-items\/what-is-the-nis2-directive-and-what-are-the-ot-obligations\/","name":"What is the NIS2 Directive and What Are the OT Obligations? - Seclab Security","isPartOf":{"@id":"https:\/\/www.seclab-security.com\/en\/#website"},"datePublished":"2026-03-16T03:47:24+00:00","dateModified":"2026-04-01T15:44:45+00:00","breadcrumb":{"@id":"https:\/\/www.seclab-security.com\/en\/faq-items\/what-is-the-nis2-directive-and-what-are-the-ot-obligations\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.seclab-security.com\/en\/faq-items\/what-is-the-nis2-directive-and-what-are-the-ot-obligations\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.seclab-security.com\/en\/faq-items\/what-is-the-nis2-directive-and-what-are-the-ot-obligations\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/www.seclab-security.com\/en\/"},{"@type":"ListItem","position":2,"name":"FAQs","item":"https:\/\/www.seclab-security.com\/en\/faq-items\/"},{"@type":"ListItem","position":3,"name":"What is the NIS2 Directive and What Are the OT Obligations?"}]},{"@type":"WebSite","@id":"https:\/\/www.seclab-security.com\/en\/#website","url":"https:\/\/www.seclab-security.com\/en\/","name":"Seclab Security","description":"","publisher":{"@id":"https:\/\/www.seclab-security.com\/en\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.seclab-security.com\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.seclab-security.com\/en\/#organization","name":"Seclab Security","url":"https:\/\/www.seclab-security.com\/en\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.seclab-security.com\/en\/#\/schema\/logo\/image\/","url":"https:\/\/www.seclab-security.com\/wp-content\/uploads\/2026\/03\/LOGO-SECLAB-BLACK-1-e1772644859613.png","contentUrl":"https:\/\/www.seclab-security.com\/wp-content\/uploads\/2026\/03\/LOGO-SECLAB-BLACK-1-e1772644859613.png","width":250,"height":46,"caption":"Seclab Security"},"image":{"@id":"https:\/\/www.seclab-security.com\/en\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/www.seclab-security.com\/en\/wp-json\/wp\/v2\/avada_faq\/2948","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.seclab-security.com\/en\/wp-json\/wp\/v2\/avada_faq"}],"about":[{"href":"https:\/\/www.seclab-security.com\/en\/wp-json\/wp\/v2\/types\/avada_faq"}],"author":[{"embeddable":true,"href":"https:\/\/www.seclab-security.com\/en\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/www.seclab-security.com\/en\/wp-json\/wp\/v2\/comments?post=2948"}],"version-history":[{"count":1,"href":"https:\/\/www.seclab-security.com\/en\/wp-json\/wp\/v2\/avada_faq\/2948\/revisions"}],"predecessor-version":[{"id":2949,"href":"https:\/\/www.seclab-security.com\/en\/wp-json\/wp\/v2\/avada_faq\/2948\/revisions\/2949"}],"wp:attachment":[{"href":"https:\/\/www.seclab-security.com\/en\/wp-json\/wp\/v2\/media?parent=2948"}],"wp:term":[{"taxonomy":"faq_category","embeddable":true,"href":"https:\/\/www.seclab-security.com\/en\/wp-json\/wp\/v2\/faq_category?post=2948"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}