{"id":237049,"date":"2023-06-30T01:00:22","date_gmt":"2023-06-30T01:00:22","guid":{"rendered":"https:\/\/consulting.lm-ag.de\/?p=237049"},"modified":"2026-04-08T14:38:44","modified_gmt":"2026-04-08T12:38:44","slug":"nis-2-directive-strengthens-cyber-security-level-in-the-eu","status":"publish","type":"post","link":"https:\/\/www.lm-ag.de\/en\/nis-2-richtlinie-staerkt-cybersicherheitsniveau-in-der-eu\/","title":{"rendered":"NIS 2 Directive strengthens cyber security level in the EU"},"content":{"rendered":"
\n
\n
\n

Is it now called NIS-2, NIS 2 or NIS2?<\/h1>\n<\/div><\/div>\n\n

Behind the different spellings lies the EU Directive 2022\/2555 on measures for a high common level of cybersecurity across the Union<\/a> (NIS-2 Directive or Cybersecurity Directive), which was adopted at the end of last year.<\/p>\n

The directive applies to a total of 18 sectors, whereby a distinction is made between essential facilities<\/strong> and important facilities<\/strong> is differentiated.<\/p>\n

The NIS 2 Directive is intended to standardise the level of protection and the rules on cyber security in the 27 EU countries and significantly expands the scope of the Directive.<\/p>\n<\/div><\/div>\n<\/div>\n\n

\n

About the author<\/h4>\n<\/div><\/div>\n\n
<\/span><\/div>\n\n

Florian Bl\u00e4ttermann<\/h4>\n

IT Security & Data Privacy Consultant<\/p>\n

\"\"<\/a>\u2003\"\"<\/a>\u2003\"\"<\/a><\/p>\n<\/div><\/div>\n<\/div>\n<\/div>\n\n

\n
\n

About the author<\/h4>\n<\/div><\/div>\n\n
<\/span><\/div>\n\n

Florian Bl\u00e4ttermann<\/h4>\n

IT Security & Data Privacy Consultant<\/p>\n

\"\"<\/a>\u2003\"\"<\/a>\u2003\"\"<\/a><\/p>\n<\/div><\/div>\n\n

<\/div><\/div>\n\n

Improved security for local administrator accounts<\/h2>\n<\/div><\/div>\n\n

Administrative rights on company computers can be handy, but they often come with insecure and repetitive passwords. In this blog post, we talk about a solution that helps to improve the security of local administrator accounts: Windows LAPS.<\/strong><\/p>\n

LAPS stands for Local Administrator Password Solution<\/strong>Almost 10 years ago, Microsoft developed the \"LAPS\" tool, which automatically and regularly changes local passwords and stores them centrally.<\/p>\n<\/div><\/div>\n<\/div>\n<\/div>\n\n

\n
\n

Who is affected?<\/h3>\n

The NIS 2 Directive defines two groups of organisations from 18 different sectors. Organisations with fewer than 50 employees are not affected.<\/p>\n<\/div><\/div>\n\n

Essential facilities:<\/h5>\n

Large operators (>249 employees & \u20ac50 million annual turnover) from 11 sectors
Operators of critical facilities (KRITIS)
Other organisations (including DNS services, qualified trust services, federal ministries, Federal Chancellery)<\/p>\n

Important facilities:<\/h5>\n

Large operators (>249 employees & \u20ac50 million annual turnover) from 7 other sectors
Medium-sized operators (50 - 249 employees & >\u20ac10 million annual turnover) from all 18 sectors
Other organisations (including trust services, defence equipment manufacturers)<\/p>\n<\/div><\/div>\n\n

\"NIS2<\/span><\/div>\n<\/div>\n<\/div>\n\n
\n
\n

What is in store for these organisations?<\/h3>\n<\/div><\/div>\n\n

The Cybersecurity Directive sets out Minimum requirements for these facilities<\/strong> fixed. The management monitors compliance and is held liable for it. Measures must be implemented in the following areas:<\/p>\n

 <\/p>\n