Essential and important entities should adopt a wide range of basic cyber hygiene practices, such as zero-trust principles, software updates, device configuration, network segmentation, identity and access management or user awareness, organise training for their staff and raise awareness concerning cyber threats, phishing or social engineering techniques. Furthermore, those entities should evaluate their own cybersecurity capabilities and, where appropriate, pursue the integration of cybersecurity enhancing technologies, such as artificial intelligence or machine-learning systems to enhance their capabilities and the security of network and information systems.
NIS2 Recital EN
Recital 89
Related across sources
Guidance Guidelines 05/2022 on the use of facial recognition technology in the area of law enforcement Guidance Guidelines 02/2021 on virtual voice assistants Guidance Version history Guidance Guidelines 8/2020 on the targeting of social media users Guidance Guidelines 05/2020 on consent under Regulation 2016/679 Guidance Guidelines 06/2020 on the interplay of the Second Payment Services Directive and the GDPR