The CSIRTs should have the ability, upon an essential or important entity’s request, to monitor the entity’s internet-facing assets, both on and off premises, in order to identify, understand and manage the entity’s overall organisational risks as regards newly identified supply chain compromises or critical vulnerabilities. The entity should be encouraged to communicate to the CSIRT whether it runs a privileged management interface, as this could affect the speed of undertaking mitigating actions.
NIS2 Recital EN
Recital 44
Related across sources
News The FCC’s Spam Call Proposal Is Just a Data Collection Scheme News A New Bill Takes Aim at Government Pressure to Silence Lawful Online Speech News Secret scoring: Join the CRIF class action now! News LinkedIn locks your GDPR rights behind a paywall News A call to EU legislators: protect rights and reject the call to delete transparency safeguard in AI Act News EDPB and EDPS support streamlining AI Act implementation but call for stronger safeguards to protect fundamental rights