république
française
ANSSI
Agence nationale de la sécurité des systèmes d'information
As the cyber threat continues to grow and information systems remain partly vulnerable, the NIS 2 Directive (Network and Information Security) – published in the European Union’s Official Journal in December of 2022 – presents a unique opportunity. Indeed, its implementation should allow thousands of entities involved in the daily lives of citizens to better protect themselves.
The (Opens a new window) NIS 2 Directive builds upon the achievements of the first NIS Directive, bringing about a shift in paradigm at both the national and European level. As attackers grow increasingly well-equipped and efficient, targeting progressively more – often poorly-protected – entities, the NIS 2 Directive broadens its objectives and scope of application to provide further protection. In the framework of cybersecurity regulations, this expansion is unprecedented. The Directive also promotes greater cooperation between member states on matters pertaining to cyber crisis management – notably through the establishment of a formal framework for the CyCLONe network (Cyber Crisis Liaison Organisation Network), which brings together ANSSI and its European counterparts.
ANSSI will communicate on the NIS 2 Directive as it is transposed nationally, sharing the results of this transposition with stakeholders.
Future essential and important entities are already encouraged to commit to a security approach which is consistent with the NIS 2 Directive.
On the 17th of March 2026, ANSSI shared the French Cyber Repository (ReCyF). The document presents a list of the measures recommended by ANSSI to meet the objectives set out by NIS 2.
The ReCyF – which, at this stage, has only been shared as a working document – is the cybersecurity repository mentioned in article 14 of the Resilience bill. Non-binding by default, this repository may, in the event of a control by ANSSI, be invoked by future subjects who decide to implement it.
ANSSI also provides access to a repository comparison tool which can be used to compare the ReCyF to other existing repositories, norms, and regulations. It is intended for entities who have already begun implementing security measures.
In accordance with the directive, pending its forthcoming transposition into national law, ANSSI provides an online pre-registration service enabling entities to provide the necessary details as mandated by the NIS 2 directive.
Pre-register for NIS 2 Opens a new window