The European Union’s Directive (EU) 2022/2555, often referred to as NIS2, is a measure coming into effect October 18th 2024 for all EU member states. This will require these EU member states to develop heightened overall cybersecurity requirements applicable to medium to large size enterprises and businesses providing certain critical infrastructure providing services within the EU. These updates to cybersecurity requirements will include stricter risk management, heightened breach notification, supply chain cybersecurity obligations, and registration by early 2025. There are exemptions available, but the directive will impact the cybersecurity operations of many businesses with more than 50 employees or over €10M annual turnover.