Webinar recording: 5 Steps to NIS2 Readiness

The "wait and see" period for NIS2 is officially over.  With the transposition deadline passed, cybersecurity compliance is now a high-stakes legal mandate across the European Union.  

On March 18, 2026, Sypher hosted a deep-dive webinar with Tudor Damian, Cybersecurity Advisor @ D3 Cyber, where we covered the 5 concrete steps you need to take right now to ensure you're moving past the theory and into a concrete roadmap for 2026. 

Key points discussed

• 00:04:12 - What is NIS2 and when did it come into effect? 
• 00:06:14 - How does NIS2 differ from the original NIS directive? 
• 00:11:20 - Do all EU member states have NIS2 transposed into national law? 
• 00:13:16 - Step 1: How can an organization determine if NIS2 applies to them? 
• 00:25:26 - Step 2: Assessing your gaps: Review the Cyber Fundamentals Framework as a starting point 
• 00:35:54 - Step 3: Mastering the 24-hour incident reporting clock. What are the incident reporting requirements under NIS2? 
• 00:38:51 - Step 4: Management accountability - what does it entail under NIS2? 
• 00:42:54 - Step 5: Operationalizing your defences. What are some key technical and organizational measures required by NIS2? 

Audience Q&A teasers 

• 00:50:10 - How do you know if you are an exception to the NIS2 scope? 
• 00:54:23 - Does a specific use case fall under NIS2? 
• 00:56:04 - How long does it typically take to assess your current NIS2 readiness and plan next steps?  
• 00:56:52 - If you’re outside the EU, such as in the UK, should you still NIS2 practices?