NIS 2

Ransomware · Apr 20, 2026 · 7 min read

NIS2 Ransomware Reporting Requirements: What Incident Response Teams Must Know

Under NIS2, ransomware incidents trigger mandatory reporting obligations with tight deadlines and personal liability for management. Here is the compliance playbook incident response teams need.

NIS 2 · Apr 19, 2026 · 12 min read

NIS2 Italy: ACN Compliance Requirements, Enforcement Timeline, and What Italian Entities Must Do in 2026

Italy's Agenzia per la Cybersicurezza Nazionale (ACN) is enforcing NIS2 with surprise audits, dual-authority supervision, and personal liability for management. Essential entities face €10M fines. Complete guide to Italian NIS2 transposition, ACN registration, and compliance steps for Decree 138/2024.

NIS 2 · Apr 18, 2026 · 13 min read

Critical Infrastructure Underwriting Under NIS2: Healthcare, Energy, and Transport in 2026

A sector-by-sector guide for cyber underwriters on NIS2 critical infrastructure compliance in healthcare, energy, and transport — including specific requirements, claim trends, underwriting questions, and coverage implications.

Cyber Resilience Act · Apr 18, 2026 · 12 min read

Cyber Resilience Act vs NIS2 vs DORA: Which Regulation Applies to My Insured?

A practical comparison of the three major EU cybersecurity regulations — CRA, NIS2, and DORA — explaining scope, timelines, requirements, and what cyber insurance underwriters need to ask clients in 2026.

NIS 2 · Apr 18, 2026 · 11 min read

NIS2 Article 21 Technical Measures: The Complete Security Requirements Breakdown for 2026

NIS2 Article 21 defines 10 mandatory security measures every essential and important entity must implement. Complete breakdown of each requirement with implementation guidance, audit evidence expectations, and compliance timeline.

NIS 2 · Apr 18, 2026 · 11 min read

NIS2 France: ANSSI Compliance Requirements, Enforcement Timeline, and What French Entities Must Do in 2026

ANSSI is enforcing NIS2 across France with formal notice procedures and audits. Essential entities face €10M fines. Complete guide to French NIS2 transposition, ANSSI audit expectations, and compliance steps for OSE and OSI entities.

NIS 2 · Apr 18, 2026 · 13 min read

NIS2 Spain: INCIBE Compliance Requirements, Enforcement Timeline, and What Spanish Entities Must Do in 2026

INCIBE and CCN are enforcing NIS2 across Spain with sector-specific audits and registration mandates. Essential entities face €10M fines. Complete guide to Spanish NIS2 transposition, INCIBE oversight, and compliance steps for operators.

NIS 2 · Apr 17, 2026 · 8 min read

NIS2 Board Liability: Personal Fines, Bans, and What Management Must Know in 2026

NIS2 Article 20 holds management bodies personally liable for cybersecurity failures. This guide explains personal fines, temporary bans, and the 7 steps boards must take to protect themselves in 2026.

NIS 2 · Apr 10, 2026 · 5 min read

BSI Opens NIS2 Enforcement: What German Entities Must Do Before the Audit

BSI has begun NIS2 enforcement audits. Essential entities in Germany face up to €10M fines. Here is what your audit readiness checklist looks like for 2026.

NIS 2 · Apr 10, 2026 · 4 min read

NIS2 Intelligence Digest — BSI Enforcement Activated, Penalty Calculators Updated

Weekly intelligence on NIS2 enforcement, supervisory activity, and cyber insurance market developments across the EU.

NIS 2 · Apr 10, 2026 · 6 min read

NIS2 Compliance Checklist for 2026: What Brokers Need to Verify Before Coverage Placement

Before placing cyber coverage for NIS2 in-scope clients, verify these 10 compliance checkpoints. Missing documentation is the most common coverage gap.

NIS 2 · Apr 10, 2026 · 9 min read

NIS2 Penalties Explained: Essential vs Important Entities and What They Mean for Coverage

NIS2 fines range from €7M to €10M depending on entity classification. Understand essential vs important entity penalties and how compliance posture affects cyber insurance pricing.

NIS 2 · Apr 10, 2026 · 16 min read

NIS2 Underwriting Questions: What Every Cyber Insurance Broker Should Ask

Practical Line 1, Line 2, and Line 3 underwriting questions for NIS2-exposed clients. Essential vs important entities. Coverage gaps brokers should flag.

NIS 2 · Apr 8, 2026 · 17 min read

What is NIS2 Compliance? A Complete Guide for 2026

Master NIS2 compliance in 2026. Understand the EU cybersecurity directive, who it affects, key requirements, penalties, and how to prepare before enforcement.

Agentic AI · Apr 7, 2026 · 8 min read

Agentic Security: What Underwriters Need to Know in 2026

Autonomous AI agents are entering production at scale — and they bring a completely new attack surface that traditional cyber insurance questionnaires weren't designed to capture.

NIS 2 · Mar 30, 2026 · 10 min read

The NIS2 Audit Crunch: What Underwriters Need to Know Before June 30, 2026

With the June 30, 2026 NIS2 compliance audit deadline approaching, cyber underwriters face a narrow window to reassess risk profiles across their entire European portfolio. Here is what the audit requirement means for how you evaluate, price, and write cyber coverage.

Living-Off-the-Land 2.0: How Autonomous AI Agents Are Weaponizing LOTL Tradecraft — And What It Means for Cyber Underwriting

DORA ICT Risk Management Framework: Complete Practitioner Guide for Financial Institutions and Their Insurers in 2026

How to Prepare for a NIS2 Audit: Documentation, Evidence, and Compliance Verification Guide (2026)