Palo Alto Networks | Executive Advisory Report: European Union Cybersecurity-Related Legislation 1 EXECUTIVE ADVISORY REPORT OVERVIEW By the end of May 2018, the GDPR and NIS Directive will have entered into force in the European Union, giving organisations covered by these pieces of legislation until this date to establish compliance. Both pieces of legislation require companies to ‘take into account’ and ‘have regard to’ state of the art (in GDPR and NIS, respectively) for their cybersecurity. However, neither piece of legislation defines the term or mandates use of specific technologies. This was a conscious decision, as security capabili- ties and IT evolve quickly, while legislation is typically long-term. The EU, therefore, places the onus on industry to maintain an understand

Join for free to read