NIS2 Directive Mandates Board Registration and Cybersecurity Governance Responsibilities

The NIS2 directive requires the Boards of Directors (BoDs) of affected entities to register on a dedicated platform and assume formal responsibilities in cybersecurity governance, budgeting, and training. Italy’s legislative decree D.lgs. 138 transposes this obligation, as clarified by the National Cybersecurity Agency (ACN). BoDs must now integrate cybersecurity into their overall strategy, with specific compliance and reporting requirements. No deadline or additional technical details are mentioned.