The new Network and Information Security (NIS) Directive demands that critical infrastructure operators-including agriculture, energy, transport, pharmaceuticals, and even water and waste management-address cybersecurity, and will push them toward allocating budget to protect their infrastructure. Non-compliers will face significant financial repercussions.
Operators will likely have to lean heavily on outside security firms to help them follow proper implementation and execution. While ABI Research predicts that this will boost the OT security space, including cyber insurance and cyber auditing markets in the years ahead, it will also likely mean that it takes a few years for operators to get this right.
Despite the headaches businesses may initially face, though, the necessity of action and benefits to these policies are real. With the increased connectivity of critical infrastructures and the continued expansion of cyber threats, inaction could have dire consequences.
“Cyber terrorist attacks are an immediate threat,” concludes Menting. “And those terrorist organizations and cyber militants are going to target hospitals, power plants, public transport, water facilities, and beyond. These policies may seem revolutionary, but they are crucial to protect citizens.”
SOURCE ABI Research