NIS 2 Directive, Proposal 16.12.2020

The NIS 2 Directive, Report on the state of cybersecurity in the Union

Article 15, NIS 2 Directive (Proposal 16.12.2020).

Report on the state of cybersecurity in the Union

1. ENISA shall issue, in cooperation with the Commission, a biennial report on the state of cybersecurity in the Union. The report shall in particular include an assessment of the following:

(a) the development of cybersecurity capabilities across the Union;

(b) the technical, financial and human resources available to competent authorities and cybersecurity policies, and the implementation of supervisory measures and enforcement actions in light of the outcomes of peer reviews referred to in Article 16;

(c) a cybersecurity index providing for an aggregated assessment of the maturity level of cybersecurity capabilities.

2. The report shall include particular policy recommendations for increasing the level of cybersecurity across the Union and a summary of the findings for the particular period from the Agency’s EU Cybersecurity Technical Situation Reports issued by ENISA in accordance with Article 7(6) of Regulation (EU) 2019/881.

Note: This is not the final text of the NIS 2 Directive. This is the text of the NIS 2 Directive Proposal of 16.12.2020.