November 2018
Beginner
64 pages
1h 11m
English
As described earlier, the NIS Directive is not a piece of legislation that applies directly to organisations, so speaking of the Directive’s ‘requirements’ is slightly misleading. The Directive does not tell organisations how to operate within the market; rather, it tells the Member States to legislate within a set of parameters – the result for the UK is the NIS Regulations.
For OES in the UK, compliance with the Regulations is through meeting requirements set by the NCSC and relevant competent authorities. The general approach that the NCSC has adopted is in line with practices internationally – which have been developed by adopting recognised best practice – including in line with the Scottish cyber ...