News
The recent parliamentary approval of the bill authorising the transposition of the NIS2 Directive marks a decisive step in strengthening the national cybersecurity framework. However, as warned by Martim Bouza Serrano, Partner and Head of the TMT (Technology, Media & Telecommunications) practice at CCA Law Firm, “the challenges are only just beginning”.
In an article for IT Security, the lawyer highlights that the practical implementation of the new legal regime “also depends on implementing acts of the European Commission and on technical regulations of the National Cybersecurity Centre”, including rules on the electronic platform for registration and incident notification.
With the entry into force of the new regime, “the covered entities must, within 60 days, complete their registration and, within 24 months, adopt measures to adapt to the new requirements established”, explains the lawyer.
Martim Bouza Serrano further adds that the transposition of NIS2 “will alter and require the revision of several national laws, including the Cybercrime Law and the Cyberspace Law”, highlighting as an example the introduction of an exception to criminal unlawfulness for ethical hacking.
The lawyer stresses that this is a critical moment for public and private organisations alike: “NIS2 is not merely a technical challenge, but a true test of digital maturity and compliance capacity for national entities”.
- Read in full
- IT Security