A Decade of Digital Resilience – NIS2 in Practice Across the CEE Region

What does the EU Digital Decade actually mean, and what are its practical implications for businesses? As the implementation of key EU legislative acts – such as NIS2, DORA, the Cybersecurity Act, and the Cyber Resilience Act – progresses, both strategic and operational questions continue to arise. These new regulations impose obligations on organisations related to cyber resilience, management body accountability, registration duties, incident reporting, and the implementation of technical and organisational measures in the area of information security.

To address these challenges, the CEE IPT team at DLA Piper held an expert session, where practical approaches to implementing the regulations were presented, with a particular focus on the Central and Eastern European region. Our lawyers from the Czech Republic, Slovakia, Romania, Hungary and Austria shared their experience working across European markets in the area of cybersecurity and NIS2.

The recording of the conference has been divided into 6 thematic panels, and we invite you to watch it.

Panel 1: Overview of the European Digital Decade – EU Cybersecurity Strategy

• Setting the scene – why is cybersecurity regulation at the heart of the EU's digital decade strategy? (Ewa Kurowska-Tober)
• Panoramic overview of the EU Cybersecurity Strategy (Ewa Kurowska-Tober, Piotr Czulak)
  • NIS2
  • Cyber Resilience Act
  • DORA (brief mention)
• NIS2 – Implementation status across the EU (brief overview) (Magdalena Kołodziejczyk)
• NIS2 – Ancillary guidance and regulation (Nicholas De Lacy-Brown)

Panel 2: CEE Member State Deep Dive

• Focus CEE Member State 1: Poland (Karol Kuterek)
• Focus CEE Member State 2: Romania (Irina Macovei)
• Focus CEE Member State 3: Czech Republic (Tomáš Ščerba)
• Focus CEE Member State 4: Hungary (Miklós Horváth)
• Focus CEE Member State 5: Austria (Stefan Panic)

Panel 3: NIS2 – scope of application and key upcoming obligations

• Cybersecurity measures (Andrei Stoica)
• Fines (Tomáš Ščerba)
• Incident Reporting (Ewa Kurowska-Tober)
• Supply chain security (Nicholas De Lacy-Brown)

Panel 4: NIS2 Sector focus – how is NIS2 playing out in some of the key sectors?

• Digital sectors, life sciences and industrials (Irina Macovei, Nicholas De Lacy Brown)

Panel 5: Tricky issues arising out of NIS2

• Size criterion and linked/ partner entities (Karol Kuterek)
• Main establishment test (Ignacy Fortuna)
• Management Bodies and personal liability (Nicholas De Lacy-Brown, Maria Doralt)

Panel 6: Rise of cybercrime in the financial sector in CEE

• Impact on financial institutions, businesses and individuals (Piotr Falarz)
• Prosecution of cybercrime and possible actions in the event of cyber incidents (Piotr Falarz)

If you have any questions or would like to discuss topics covered during the conference in more detail, we invite you to contact our panelists. Simply click on the name of the expert below to access their contact information.

We are happy to answer your questions and support you in addressing cybersecurity challenges and implementing EU regulations.