The final version of the European Commission Implementing Regulation on the NIS2 Directive No. 2024/2690 was published in the Official Journal of the EU on 18.10.2024. The Regulation sets out technical and methodological requirements for cybersecurity risk management measures for digital service providers falling under the scope of the new Cyber Security Act and specifies the cases in which an incident is considered significant, as foreseen by the new Cyber Security Act in Section 18. However, this regulation will only be binding and enforceable after the new Cyber Security Act comes into force.