The level of knowledge of cybersecurity systems is not very good among IT decision-makers in French companies. Nearly a third (23%) said they had never heard of NIS 2, a European directive aimed at strengthening the capabilities of public and private entities to combat cyberattacks. This is the result of a study commissioned by Okta, an American company specializing in identity and access management.
In this context, the opinions of 500 IT decision makers involved in the field of IT cybersecurity were surveyed during September 2024. The results were compiled in a survey published on October 9 under the title “The state of maturity and cyber investments in France“.
– Lack of preparation for regulations
Among the key findings, the study points to a lack of knowledge and preparation to comply with regulations dealing with cybersecurity topics. “A point that can be considered alarming given deadlines that have already passed for compliance (GDPR, DORA, Cybersecurity Act) or are expiring as quickly as NIS 2On this last point, 24% of those surveyed said that they knew NIS 2 only by name.
Also, 24% of respondents said they are already prepared, and 45% are currently investing to become compliant. Note that Member States have until October 2024 to transpose the Directive into their national legislation, but some requirements will be subject to a compliance deadline.
(…)
This article is intended for subscribers of our Data Protection Club
Support specialized journalism.