The Network and Information Systems Security Directive 2 (NIS2) elements are grounded in sound IT asset lifecycle management principles. NIS2 is an extension of the original NIS Directive of 2016 that adds specificity and accounts for vulnerabilities that emerged during the. For the purposes of point (h), financial entities shall perform the review of firewall rules and connections filters on a regular basis in accordance with the classification established in accordance with Article 8 (1) of Regulation (EU) 2022/2554 and the overall risk profile of ICT systems. The National Cybersecurity Center of Excellence (NCCoE), part of the National Institute of Standards and Technology (NIST), developed an example solution that financial services companies can use for a more secure and efficient way of monitoring and managing their many information technology (IT). Financial entities shall, as part of the safeguards ensuring the security of networks against intrusions and data misuse, develop, document, and implement policies, procedures, protocols, and tools on network security management, including all of the following: whether those services are provided. The EU's Cybersecurity Strategy for the Digital Decade (JOIN/2020/18 final), aims to ensure a global and open Internet with strong guardrails to address the risks to the security and fundamental rights and freedoms of people in Europe. This guidance provides an introduction to the key topics to consider when designing, maintaining, or using networks that need to be secure and resilient. It will also help you apply the NCSC's Cyber security. ISO 27001 Control 7.
