In brief: The Northern Thuringia region shows a high percentage of companies that have not yet met NIS2 requirements – the Chamber of Industry and Commerce warns of impending consequences.
The Thuringia Chamber of Industry and Commerce (TTG) warns of widespread non-compliance with the European Network and Information Security Directive (NIS2) among companies in the Northern Thuringia region. According to TTG data, a large portion of affected businesses have not yet fulfilled the statutory requirements.
The NIS2 Directive obligates companies and critical infrastructure operators above a certain size to meet enhanced cybersecurity standards. This affects operators of critical infrastructures, energy suppliers, water utilities, financial institutions, and increasingly also medium-sized and larger companies from other sectors. The Directive requires these organizations to establish demonstrable security measures and implement risk and incident management.
The Thuringia Chamber of Industry and Commerce has identified significant catch-up requirements in its region. Many companies in Northern Thuringia appear to lack full awareness of the requirements or do not yet have the necessary structures and processes in place. This presents a dual challenge for CISOs: they must not only bring their own organizations into compliance but also verify whether business partners and supply chain members are NIS2-compliant.
The compliance deadline is already underway. Companies that fail to implement the requirements risk fines and regulatory consequences. The TTG recommends affected businesses to immediately address the specific requirements applicable to their industry and company type and conduct a gap analysis.
Source: news.google.com · Published 25 June 2026
Lumi AI News — AI-assisted curation according to Art. 50 EU AI Act. Paraphrase and classification by Lumi News Pipeline v1.7.2.