Santiago de Compostela, June 3, 2025 – This morning, the webinar “NIS2, Security, and Best Practices” was held, an initiative promoted by PuntoGal in collaboration with the National Cybersecurity Institute (Incibe) and the Galician cybersecurity hub ciber.gal. The main objective of the meeting was to provide professionals with insights into the new European directive NIS2, which directly affects the security of digital systems of numerous public and private entities.
The session, conducted in virtual format at 11:00 AM, featured recognized experts in technology and cybersecurity who discussed various aspects of the regulation’s implementation and the resulting certification requirements.
Firstly, Nacho Amadoz, a lawyer specialized in Information Technologies and partner at the consulting firm Mooenia, spoke about the impact of NIS2 on organizations, both legally and organizationally, comparing its significance to the changes brought by data protection laws. He emphasized that compliance extends to a broader range of entities, such as network entities, requiring measures typically associated with larger organizations.
Cristina Filgueira, a consultant in the National Security Framework (ENS) at Tempo Consultores, explained what NIS2 entails, who it affects, and how its scope may evolve with biannual updates. She highlighted the importance of maintaining certifications mandated by the law, whether through external verification or self-assessment, and the obligation to report significant incidents and the names of security officers in certain companies.
Concluding with a practical case study, Diego Vázquez, CEO of Imaxín Software, used his company’s adaptation process to the ENS as an example, certifying all tools and cloud-based workflows. He discussed how this decision, initially driven by specific public contracts, led to strengthened procedures and improved organizational security and efficiency.
The webinar was presented and moderated by Cristina Ríos from PuntoGal, who emphasized at the beginning of the event the importance of providing spaces for dissemination and learning around regulations like NIS2, which will set security standards in the coming years.
In conclusion, Barbara García, knowledge and awareness technician at INCIBE, stressed the importance of prevention work and public literacy efforts, reflected in increased calls to the 017 hotline, and the ongoing need to promote secure practices in businesses. She thanked all participating entities for their involvement in the webinar.
The NIS2 directive, mandatory for an increasing number of entities in EU member states, expands and strengthens the minimum security requirements for essential service operators and digital service providers. The session aimed to address common doubts and share practical recommendations for its implementation.
This event is part of the ongoing efforts by PuntoGal, Incibe, and ciber.gal to promote a robust and shared cybersecurity culture within the Galician ecosystem. To complement these outreach efforts, PuntoGal has launched the nis2.dominio.gal website, providing comprehensive information about the regulation’s importance, advice, and relevant resources.
Finally, the organizers have published an informative brochure, available for download on the aforementioned website, which includes a ten-point checklist for optimal adaptation to NIS2.
These activities form part of PuntoGal’s cybersecurity initiatives, addressing a global issue affecting businesses, entities, and citizens alike. PuntoGal is also involved with the Galician cybersecurity hub ciber.gal and entities like the Global Cyber Alliance (GCA), Nonprofit Cyber, and the Internet WatchFoundation (IWF), among others, all working towards enhancing cybersecurity protocols and safety measures.