ImplementedNIS2
NIS2 in Lithuania
Lithuania transposed NIS2 into the national Cybersecurity Act. NKSC coordinates compliance audits and threat alerts.
Transposition law
Kiberetinio saugumo Δ―statymas (Cybersecurity Act amendment)
In force
17 October 2024
Competent authority
National Cyber Security Centre (NKSC)
Max fine (Essential)
β¬10 million or 2% of global annual turnover
Max fine (Important)
β¬7 million or 1.4% of global annual turnover
Full enforcement
October 2024
Key Deadlines
Law in force
17 October 2024
Competent Authority
National Cyber Security Centre (NKSC)
Central NIS2 competent authority and incident handler
https://www.nksc.lt βNKSC conducts active penetration testing and proactive security reviews for government and infrastructure networks.
Registration Process
Access the NKSC administrative portal to register company identification and asset boundaries.
π Quick Test
Check NIS2 Scope βFind out if your company is in scope
Does your organisation fall under Annex I (Essential) or Annex II (Important) entities?
Key Requirements
- 1Register operational parameters in the central NKSC database
- 2Deploy advanced network intrusion detection systems
- 3Deliver incident declarations within 24 hours to NKSC
National Additions
β
Lithuania mandates the absolute exclusion of software from vendors deemed national security threats
FAQ: NIS2 in Lithuania
Does Lithuania restrict software vendors?
Yes, entities must not use security software from vendors headquartered in jurisdictions considered threats to Lithuanian security.
Ready to assess your NIS2 compliance?
Use our free tools to check your NIS2 scope and run a gap assessment.