On June 26, 2025, the European Union Agency for Cybersecurity (ENISA) published two sets of guidelines to help businesses ensure their organizational compliance with the NIS2 Directive.

The NIS 2 Directive has been implemented in Italy through Legislative Decree No. 138/2024, which has expanded the scope of the regulation at the national level, and one of the first obligations imposed by the decree is the registration on the National Cybersecurity Agency (ACN) portal by the end of February 2025.