The NIS 2 Directive is a key piece of EU legislation designed to enhance cybersecurity across the European Union. Officially known as Directive (EU) 2022/2555, it builds upon and replaces the original Network and Information Systems (NIS) Directive. NIS 2 aims to address security gaps that have emerged due to technological advancements and increasing cyber threats. It broadens the scope of sectors and entities affected, including essential and important entities, such as providers of public electronic communications networks or services, digital services, and critical sectors like energy, transport, banking, and health. The directive mandates these entities to implement stringent cybersecurity measures, report major incidents, and adhere to stricter supervisory measures, including more rigorous enforcement requirements and potential sanctions for non-compliance.