The Evolving Role of the Human Factor in Cybersecurity Under the EU’s NIS2 Directive

The article highlights the evolving role of the human factor in cybersecurity, particularly within the framework of the EU’s NIS2 Directive. It emphasizes that organizational cyber resilience is cultivated through cultural development rather than technical solutions alone. The discussion stems from a meeting where the human element transitioned from a compliance checkbox to a strategic asset in improving corporate cyber posture. Key themes include accountability, phishing risks, and the integration of human-centric approaches with technical measures like encryption. The focus aligns with NIS2 requirements and references frameworks such as NIST. No specific dates, numerical data, or additional technical details were provided.