A NIS2 hazai bevezetésének folyamata és kockázatai

Kis Márton; Bódi Antal; Számadó Róza

doi:10.32567/hm.2024.3.10

The Process and Risks of Introducing NIS2 in Hungary

Kis Márton
https://orcid.org/0000-0002-9842-3436
Bódi Antal
https://orcid.org/0000-0002-6199-8025
Számadó Róza
https://orcid.org/0009-0000-9684-335X

doi: 10.32567/hm.2024.3.10

This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.

Abstract

The number and complexity of incidents and attacks in cyberspace increased significantly after the turn of the millennium and caused significant damage not only to the private sector, but also to governments. These events made it clear that it is necessary to create a comprehensive cyber security regulation in the EU. In 2016, the Union adopted its first EU-level cybersecurity legislation, the Network and Information Security (NIS) Directive, which was a fundamental step towards the common information security of EU-level network and information systems. During the implementation, the stakeholders faced several challenges both at the EU and national level, and due to the rapid development of cyber threats and the rapid spread of new technologies, the directive - due to its nature - was unable to keep up with the continuous changes.
The emerging challenges and the constantly changing digital environment forced a review of the EU framework. As a result, NIS2 was born. The updated directive represents a comprehensive strategy in the field of EU cyber security, its declared aim is to strengthen enforcement mechanisms, the basic legal pillar of the field. At the same time, it significantly expanded the subject and material scope of its predecessor, the NIS, in order to strengthen the resilience of critical infrastructures and services.

The purpose of this study is to investigate whether the conditions are available for the compliance of domestic enterprises and organizations covered by the directive, and what is necessary for the relevant organizations to be able to meet the expectations of NIS2

Keywords:

NIS2 cybersecurity risk skills awareness

How to Cite

Kis, M., Bódi, A., & Számadó, R. (2025). The Process and Risks of Introducing NIS2 in Hungary . Military Engineer, 19(3), 165–182. https://doi.org/10.32567/hm.2024.3.10

References

évi XXIII. törvény - a kiberbiztonsági tanúsításról és a kiberbiztonsági felügyeletről

/2023. (V. 15.) SZTFH rendelet - az információs és kommunikációs technológiák kiberbiztonsági tanúsításáról

BOR Olivér – BENCSIK Balázs (2024): Ki és hogyan készüljön fel a NIS2-re? SZTFH konferencia. Online: https://www.youtube.com/watch?v=IAsXC_qFNNc

BYTTEBIER, Pieter (2022): NIS-2: Where are you? Centre for Cybersecurity Belgium, 2022. április 30. Online: https://ccb.belgium.be/en/news/nis-2-where-are-you

ENISA (2024): Foresight Cybersecurity Threats For 2030. Executive Summary. Online: https://www.enisa.europa.eu/publications/foresight-cybersecurity-threats-for-2030-update-2024-executive-summary

Európai Bizottság (2023a): NIS2 Directive. Online: https://digital-strategy.ec.europa.eu/hu/policies/nis2-directive

Európai Bizottság (2023b): NIS2 FAQS. Online: https://digital-strategy.ec.europa.eu/en/faqs/directive-measures-high-common-level-cybersecurity-across-union-nis2-directive-faqs

MEGYERI Lajos – FARKAS Tibor (2017): Kockázatkezelés, tudomány vagy kuruzslás. Hadmérnök, 12(3), 198–209. Online: https://real.mtak.hu/64731/1/1.Farkas_Hadm%C3%A9rn%C3%B6k2017.pdf

MIKE Nimród – KRÉN Enikő – KECSKEMÉTI Tamás (2023): Farkasbiztos téglaház? A KKV-k információbiztonsága Magyarországon. Vezetéstudomány, 54(9), 44–57. Online: https://doi.org.10.14267/VEZTUD.2023.09.04

SCHMITZ-BERNDT, Sandra – COLE, Mark (2023): Towards an Efficient and Coherent Regulatory Framework on Cybersecurity in the EU: The Proposals for a NIS 2.0 Directive and a Cyber Resilience Act. Applied Cybersecurity & Internet Governance, 1(1), 1–17. Online: https://doi.org/10.5604/01.3001.0016.1323

VANDEZANDE, Niels (2024): Cybersecurity in the EU: How the NIS2-directive Stacks up Against Its Predecessor. Computer Law & Security Review. Online: https://doi.org/10.2139/ssrn.4383118

World Economic Forum (2024): Global Risks Report 2024. 19th Edition: Online: https://www.weforum.org/publications/global-risks-report-2024/

ZÁGON Csaba – GECSEI Márton (2021): Kockázatelemzés a gyakorlatban: cigaretta a repülőtéren. In Tradíció, tudomány, minőség. 30 éves a Vám- és Pénzügyőri Tanszék. Tanulmánykötet. Budapest: Magyar Rendészettudományi Társaság Vám- és Pénzügyőri Tagozata, 129–142. Online: DOI: http://doi.org/10.37372/mrttvpt.2021.2.7