Gartner® Report: Implement These Measures in CPS to Support NIS2 Requirements

Ensuring organizational compliance with the European Union’s NIS2 Directive can be challenging and complex. Organizations supporting cyber-physical system (CPS) assets cannot overlook these critical systems when applying security controls as part of their NIS2 compliance efforts. It’s crucial that security leaders understand the limitations associated with some CPS, such as legacy technology, the role of the original equipment manufacturer (OEM) in updates, and the intended lifespan of some CPS assets. Failure to comply puts leaders and organizations within EU member states at risk for severe sanctions, including fines and potential lifetime bans from holding management or director positions. 

In this Gartner® report, “Implement These Measures in CPS to Support NIS2 Requirements,” you’ll learn key strategies and recommendations to keep CPS within your organization compliant with the NIS2 Directive, including:

• Implementing the right organizational measures to ensure senior leadership takes an active role in CPS risk management

• Optimizing asset visibility within your organization to lay the foundation for all other cybersecurity controls, including vulnerability management, and recovery processes

• Protecting CPS assets by implementing technical measures that consider CPS-specific limitations such as segmentation, access controls, and configuration and change management

Additional Gartner analysis is available within the report. Please submit the above form to gain complimentary access. 

GARTNER® is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used here with permission. All rights reserved. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.