The European Unition Directive for high common level of cybersecurity of Network and Information Systems (NIS2), coming into effect in October 2024, brings new regulations for cyber protection of critical infrastructure – including maritime companies.

The Directive provides legal measures to boost the overall level of cybersecurity in the EU by ensuring:

Member States’ preparedness, by requiring them to be appropriately equipped. For example, with a Computer Security Incident Response Team (CSIRT) and a competent national network and information systems (NIS) authority; 
Cooperation among all the Member States, by setting up a Cooperation Group to support and facilitate strategic cooperation and the exchange of information among Member States;
A culture of security across sectors that are vital for our economy and society and that rely heavily on ICTs, such as energy, transport, water, banking, financial market infrastructures, healthcare and digital infrastructure.


New protection requirements:

  • Operational technology security
  • Protection for real-time data exchange
  • Supply chain safeguards

Reporting requirements:

  • 24 hours report an early warning to the relevant authority or CSIRT

  • 72 hours for a full notification report, including a comprehensive severity and impact assessment

Non-compliance may lead to:

  • Fines up to Euros 10,000,000 or 2% of the global annual revenue of the company (higher of them)

  • In some cases, the top company executives may be held personally liable

How to prepare for NIS2

Cydome can help you prepare NIS2 readiness and compliance based on established best practices.

Continuous vulnerabillity scanning on all assets onboard with embedded analysis of risk  assessment

Gap Analysis & Risk Assessment

Regular phishing drills, cyber training for IT teams on cyber managment

Training Programs & Awareness

Embedded solution with automated reporting on detection of incident and logs of all actions taken

Report & Document Security Incidents


Gap Analysis & Risk Assessment
Implementation of all necessary policies, continous monitoring enforcment of policies by the crew
Cybersecurity Hygene Framework

Proactive prevention, threat detection systems, network segmentation, and encryption protocols

Continuous Monitoring & Incident Response
Real time threat detection of IT & OT, SIEM monitoring over entire fleet
Download the NIS2 Cheat-Sheet for Maritime Companies

Fill in the details below to download the PDF file.

Skip to content