We consider this section particularly important because the NIS 2 directive, which is the main driver of investment in cybersecurity at the EU level, came into force in 2024.