Day 1

EU & You: What will upcoming acts mean practically

Session complexity:
As security professionals, we can be happy that government regulation is starting to happen, because this is a strong message to everyone that security is not optional. At the same time, regulation almost never makes your life any easier. In this talk I give a very practical overview of what upcoming laws and rules will mean for operating digital infrastructure, and what will change in the medium and somewhat longer timeframes.

The talk will cover the already passed NIS2, but also the far newer Cyber Resilience Act, which might have a spectacular impact on how software and hardware gets developed. And in turn, complying with NIS2 may mean having to used EU CRA approved technologies. The hope for this brief talk is to introduce you to the relevant upcoming legislation & explain them in their mutual context, so you can start getting ready today.

Speakers in this session