NIS2 6-month anniversary: SailPoint VP EMEA comments

It’s been six months since the EU’s cyber resilience framework, NIS2, took the business landscape by storm. Whilst organisations scrambled to achieve compliance in 2024, it can’t be seen as a tick-box exercise – this year compliance must be accompanied by greater efforts.

With a rise in AI-driven attacks, the threat landscape is growing more sophisticated each day and the stakes for businesses have never been higher. This is especially true for businesses operating within large supply chains and with legacy infrastructure.

Supply chain security is a critical component of NIS2 compliance, yet it remains the soft underbelly of many businesses’ security practices. Any account compromise can result in significant loss both financially and reputationally.

Businesses mustn’t wait to be led by red tape when it comes to taking a proactive stance on protecting sensitive information. Compliance efforts must be met with robust processes and technology such as identity security, creating greater visibility and control over who has access to what, and when. Doing so is critical to securing organisations, and their complex supply chains, and to keeping threats at bay.