ETSI has published Technical Report TR 103 456 to guide the implementation of the EU NIS Directive, offering advice on achieving a high common level of network and information system security. The report details methods for structured information sharing, incident notification, and technical risk management while mapping existing and developing cybersecurity specifications to legal requirements. It is designed for regulators, essential service operators, and digital service providers to assist in the legal transposition of the directive into national legislation. This release builds on ETSI’s long-standing expertise in security and supports the integration of security-by-design principles into emerging technologies like 5G and NFV.
Keywords: NIS Directive, security by design, risk management, incident notification, quantum computing