The Council of the European Union ('the Council') announced, on 13 May 2022, that it had reached a provisional agreement with the European Parliament ('the Parliament') on the proposal for a revised Directive on Security of Network and Information Systems ('NIS2'). In particular, the Council confirmed that it had agreed on measures for a high common level of cybersecurity across the EU, to further improve the resilience and incident response capacities of both the public and private sectors, as well as the EU as a whole. Specifically, the Council noted that NIS2 will set the baseline for cybersecurity risk management measures and reporting obligations across all sectors that are covered by N