EU’ss NIS2 Directive in Practice: WALLESS, RIA and ITL Discuss the Next Steps for Organisations
The EU’s NIS2 Directive has introduced new cybersecurity obligations for many organisations and greater accountability for senior management. Now that the self-identification deadline has passed, the key question is: what comes next?
This was the focus of our joint seminar, “Cybersecurity: When will RIA be at my door?”, organised by WALLESS in cooperation with the Estonian Information System Authority (RIA) and the Estonian Association of Information Technology and Telecommunications (ITL).
Tea Park, Counsel and Senior Associate at WALLESS, Lauri Kriisa, Head of the Legal Department at RIA, and Keilin Tammepärg, Head of Policy and Legal Affairs at ITL, explored what NIS2 compliance looks like in practice:
- the obligations organisations need to fulfil,
- RIA’s expectations in the context of supervisory activities, and
- why cybersecurity has become a matter of corporate governance rather than solely an IT function.
The discussion also examined the intersection of cybersecurity and data protection, while addressing many of the practical questions organisations are currently facing. The discussion was moderated by WALLESS Associate Liisa Kolosov, with Counsel Pilleriin Peedosk facilitating the audience Q&A.
Thank you to everyone who joined us and contributed to an engaging discussion!