In progressNIS2
NIS2 in Ireland
Ireland is in the final legislative phases of passing the National Cyber Security Bill 2024. NCSC-IE is designated as the primary supervisor.
Transposition law
National Cyber Security Bill 2024 (draft)
In force
Pending
Competent authority
National Cyber Security Centre (NCSC-IE)
Max fine (Essential)
€10 million or 2% of global annual turnover
Max fine (Important)
€7 million or 1.4% of global annual turnover
Full enforcement
June 2026
Key Deadlines
Enforcement target
1 June 2026
Competent Authority
National Cyber Security Centre (NCSC-IE)
Lead competent authority and national CSIRT
https://www.ncsc.gov.ie ↗NCSC-IE emphasizes advisory guidance, threat intelligence sharing, and cooperative risk reviews, moving to strict audits post-enactment.
Registration Process
Registration guidelines will be published on ncsc.gov.ie when the National Cyber Security Bill becomes law.
📊 Quick Test
Check NIS2 Scope →Find out if your company is in scope
Does your organisation fall under Annex I (Essential) or Annex II (Important) entities?
Key Requirements
- 1Registration with NCSC-IE upon portal activation
- 2Vulnerability management programs and risk reduction policies
- 324-hour warning for significant network anomalies
National Additions
★Ireland hosts many multinational tech headquarters, leading to specific supervision rules for cloud and digital services providers
FAQ: NIS2 in Ireland
Where should multinational digital providers register?
Under the main establishment principle, if your European head office is in Dublin, you must register with the NCSC-IE.
Ready to assess your NIS2 compliance?
Use our free tools to check your NIS2 scope and run a gap assessment.