Coursera Spring Sale
40% Off Coursera Plus Annual!
Grab it
Explore the critical intersection of European cybersecurity regulations and IT security strategy in this comprehensive conference talk that examines the "perfect storm" of compliance challenges facing organizations today. Understand how the Cyber Resilience Act (CRA) and NIS-2 regulations create unprecedented personal liability for IT security professionals, with potential damages reaching up to 10 million euros per incident for harm caused to EU citizens. Learn who bears responsibility under these new frameworks and discover practical approaches to achieving compliance in an increasingly complex regulatory landscape. Examine supply chain security compliance requirements and evaluate whether traditional methods like 200-page supplier questionnaires are sufficient for modern security needs. Analyze the relationships between OpenSSF Scorecard, Security Baseline, NIS-2, Common Criteria Recognition, and ISO 27001 standards, and determine whether ISO 27001 certification alone provides adequate NIS-2 compliance. Gain insights into effective supply chain evaluation processes and understand the broader implications of these regulations for organizational IT security strategies. Discover actionable steps to navigate this regulatory environment and protect both your organization and personal liability while maintaining robust cybersecurity practices.
