Among large companies, this even applies to three out of ten businesses, according to one of the conclusions of a study by ABN AMRO.
The damage was not limited to financial losses, but also included data loss and operational disruptions. I share ABN AMRO’s view that it is concerning that the organizations surveyed have taken too few proactive measures for detecting cyberattacks, responding to incidents, or recovering after a hack. It is rightly noted that this is worrying, as financial damage can escalate quickly and may even pose a strategic risk if customers lose trust in the company, critical processes are disrupted for extended periods, or intellectual property is stolen.
It is also concerning that only two out of three large companies surveyed—and less than half of SMEs—are familiar with the NIS2 obligations. It is not only important for organizations that fall under NIS2 to comply with their obligations in time. SMEs must also be prepared to meet the requirements of their NIS2-regulated clients. The report rightly states that it is crucial for organizations to take action, especially since the Dutch implementation law (Cybersecurity Act) is expected to come into force in the third quarter of this year.
Would you like to know more about NIS2 or about the NIS2 Boardroom Training for executives? Please contact n.vanduuren@declercq.com or +31 6 54983766.
Would you like to receive a monthly overview of updates and blog posts in your inbox? Click here to subscribe to the newsletter!
