Skip to content

NIS2 Implementation Costs German Companies €2.2 Billion

The bottom line: Implementation of the NIS2 Directive in Germany requires total investments of €2.2 billion across all affected companies.

According to current calculations, implementation of the European NIS2 Directive will cost German companies a total of €2.2 billion. This sum results from necessary investments in cybersecurity infrastructure, compliance processes, and organizational structures.

The European Network and Information Security Directive NIS2 obligates companies above a certain size to make substantial investments in their information security. For the German economic area, the total costs of compliance implementation are estimated at €2.2 billion according to estimates.

For CISOs and IT security managers, this means a significant increase in security measure budgets. Costs arise not only from technological investments, but also from establishing new governance processes, incident response procedures, supplier management, and documentation obligations. Additionally, personnel and training expenses must be factored in.

The directive addresses critical infrastructures and other important sectors with varying intensity. Companies should therefore first review their classification and conduct a detailed cost analysis for their specific situation. Early planning of budgeting and resource allocation is necessary to meet compliance deadlines and avoid penalties.


Source: news.google.com · Published June 3, 2026
Lumi AI News — AI-assisted curation according to Art. 50 EU AI Act. Paraphrase and classification by Lumi News Pipeline v1.6.2.

Share on: