The increasing importance of cyber resilience is emphasised by a number of new legislative proposals and wider developments, such as technical requirements for IT security as part of the implementation of the EU NIS 2 Directive. More and more companies will be forced to assess their existing IT security measures and to adapt their cybersecurity strategies as legal requirements expand their scope. EU NIS 2 Directive, for example, expands requirements beyond the traditional critical national infrastructure companies.