Overview
NIS2 raises cybersecurity baseline obligations, incident reporting and supply-chain controls for a much wider set of sectors.
Why it matters
Spanish entities in finance, energy, health and digital infrastructure must run formal cyber risk programmes.
Impact on RegTech
Heavy demand for GRC, vulnerability management, incident reporting and supply-chain risk tools.