ImplementedNIS2
NIS2 in Malta
Malta transposed NIS2 via the Cybersecurity Act, 2024. MITA regulates network defense and guides organizations through self-registration.
Transposition law
Cybersecurity Act, 2024
In force
17 October 2024
Competent authority
Malta Information Technology Agency (MITA) / CSIRT-MT
Max fine (Essential)
€10 million or 2% of global annual turnover
Max fine (Important)
€7 million or 1.4% of global annual turnover
Full enforcement
October 2024
Key Deadlines
Law in force
17 October 2024
Competent Authority
Malta Information Technology Agency (MITA) / CSIRT-MT
National competent authority and operational cybersecurity lead
https://mita.gov.mt ↗MITA operates a centralized approach, hosting information sessions, defining cybersecurity baselines, and maintaining the secure register.
Registration Process
Fill in company credentials via the secure registration form at mita.gov.mt.
📊 Quick Test
Check NIS2 Scope →Find out if your company is in scope
Does your organisation fall under Annex I (Essential) or Annex II (Important) entities?
Key Requirements
- 1Register with MITA via digital portal interfaces
- 2Acknowledge strict supplier auditing parameters
- 324-hour warning message for major anomalies
National Additions
★Malta adds tailored guidelines for online gaming support infrastructure and maritime service systems
FAQ: NIS2 in Malta
What is CSIRT-MT?
It is Malta's national computer security incident response team coordinating all network incident notifications.
Ready to assess your NIS2 compliance?
Use our free tools to check your NIS2 scope and run a gap assessment.