Move supplier assurance off spreadsheets. Private pilot opening soon.→ Join the pilot
SHARDSCybersecuritySupply Chain Assurance · NIS2
Back to the NIS2 overview
NIS2 · Austria

NIS2 in Austria — transposition status and what’s changed

Austria adopted the Netz- und Informationssystemsicherheitsgesetz 2026 (NISG 2026) on 23 December 2025. The Act enters into force on 1 October 2026, at which point the NIS 2 regulatory framework becomes operational; the existing NISG 2018 regime continues to apply until then. The supervisory cooperation runs through the Federal Chancellery (BKA) and the Federal Ministry of Interior (BMI), which took over the NIS Office and GovCERT Austria from the BKA in April 2025. Approximately 4,000 Austrian entities are expected to fall within scope when NISG 2026 takes effect.

National competent authority
Austrian NIS Office

Authoritative source for Austria-specific NIS2 guidance, registration, and incident reporting.

5.0 / Next step

Where are you with NIS2 supplier work in Austria?

Two ways to find out fast — a five-minute self-assessment, or a practitioner-walked exposure picture in two to three weeks.

Take the readiness checkSee the Exposure Assessment

Detailed Austria guide in development — get notified

We’re writing a longer practitioner guide on NIS2 in Austria: thresholds, registration timelines, and what regulators are starting to ask suppliers for. Drop your email and we’ll send it when it lands.

We use your address only for this — no marketing list, no resale.

Back to the NIS2 overviewSee how Supply Chain Assurance helps with NIS2 supplier work