Products

Explore Our Customised Security Awareness Training and Human Risk Management Solutions - Equip your team with the essential skills to defend against modern cyber threats. Our platform offers everything from phishing simulations to comprehensive policy management, empowering your workforce to enhance security and ensure compliance effectively.

Security Awareness Automation

Schedule Your Annual Awareness Campaign In A Few Clicks

Phishing Simulation

Stop Phishing Attacks In Their Tracks With Award-Winning Phishing Software

eLearning Content

Cyber Security eLearning to Explore our Award-Winning eLearning Library, Tailored for Every Department

Compliance Management

Simplify Policy, Privacy, and Incident Management for Total Compliance

Industries

Explore the versatility of our solutions across diverse industries. From the dynamic tech sector to healthcare, delve into how our solutions are making waves across multiple sectors. 


Financial Services

Creating A First Line Of Defence For Financial Service Organisations

Enterprises

A Security Awareness Training Solution For Large Enterprises

Education Sector

Engaging Security Awareness Training For The Education Sector

Tech Industry

Transforming Security Awareness Training In The Tech Industry

Governments

A Go-To Security Awareness Solution For Governments

Remote Workers

Embed A Culture Of Security Awareness - Even At Home

Healthcare Workers

See Our Tailored Security Awareness For Healthcare Workers

NIS2 Compliance

Support Your Nis2 Compliance Requirements With Cyber Security Awareness Initiatives

Resources

From posters and policies to ultimate guides and case studies, our free awareness assets can be used to help improve cyber security awareness within your organisation.

Resources Overview
Cyber Security Awareness For Dummies

An Indispensable Resource For Creating A Culture Of Cyber Awareness

Ultimate Guide To Phishing

Educate Employees About How To Detect And Prevent Phishing Attacks

Anti Phishing Policy

Create A Security-Conscious Culture And Promote Awareness Of Cyber Security Threats

A-Z Cyber Security Terminology

A Glossary Of Must-Know Cyber Security Terms

Free Stuff

Download Our Free Awareness Assets To Improve Cyber Security Awareness In Your Organisation

Dummies Guide To Cyber Security Elearning

The Ultimate Guide To Implementing Effective Cyber Security Elearning

Free Awareness Posters

Download These Complimentary Posters To Enhance Employee Vigilance

Case Studies

Hear How We’re Helping Our Customers Drive Positive Behaviour In Their Organisations

Cyber Security Behavioural Maturity Model

Audit Your Awareness Training And Benchmark Your Organisation Against Best Practice

About

With 18+ years of experience in the Cyber Security and Compliance market, MetaCompliance provides an innovative solution for staff information security awareness and incident management automation. The MetaCompliance platform was created to meet customer needs for a single, comprehensive solution to manage the people risks surrounding Cyber Security, Data Protection and Compliance.

Why Choose Us

Learn Why Metacompliance Is The Trusted Partner For Security Awareness Training

Careers

Join Us and Make Cybersecurity Personal

Leadership Team

Meet the MetaCompliance Leadership Team

Employee Engagement Specialists

We Make It Easier To Engage Employees And Create a Culture of Cyber Awareness

MetaBlog

Stay informed about cyber awareness training topics and mitigate risk in your organisation.

Portugal Moves Closer to NIS2 Implementation: What You Need to Know

Portugal Moves Closer to NIS2 Implementation

about the author

Share this post

Portugal is on the path to NIS2 implementation, moving towards formally adopting the EU’s NIS2 Directive into national law. While the legislation has yet to come into force, draft proposals have already been approved and are now progressing through Parliament. Once enacted, the law will impact a broad range of industries, applying to both public and private sector organisations. This represents a major milestone in strengthening Portugal’s cybersecurity framework and aligning it with EU-wide standards, highlighting the urgent need for organisations to begin preparing for compliance well in advance.

This is far more than just a regulatory update to watch—it is a clear call to action for all organisations operating in Portugal to start their NIS2 readiness efforts now.

What Is NIS2?

NIS2 (Network and Information Security Directive 2) is the European Union’s updated cybersecurity directive designed to improve the overall cyber resilience of critical infrastructure and essential services. It replaces the original NIS Directive with broader scope, stricter requirements and stronger enforcement.

NIS2 applies to both essential and important entities across sectors such as:

  • Energy, transport, banking, health and water
  • Digital infrastructure and online platforms
  • Manufacturing of critical products
  • Public administration

Unlike the original directive, NIS2 introduces personal accountability for senior leaders, tighter incident reporting timelines, and a clear emphasis on human-centric security measures including staff training, governance processes, and risk management across supply chains.

NIS2 Implementation Deadline Delays and Risks in Portugal

Portugal was originally required to transpose NIS2 into national law by 17 October 2024. However, political and legislative delays have meant this deadline was missed.

According to PwC Portugal, the European Commission issued a formal notice to Portugal in May 2025, setting a two-month deadline to finalise this transposition – a deadline that was due to expire in early July 2025. Despite this, formal parliamentary approval has not yet been granted.

While it is not yet officially confirmed that Portugal has missed this deadline, the compressed timeline and ongoing legislative process increase the risk of EU infringement procedures and create uncertainty for organisations trying to comply with new obligations.

What Portuguese Organisations Need to Know About NIS2 Compliance

Even though the law is not yet formally enacted, Portuguese organisations, especially those in critical sectors, must act urgently to prepare for NIS2 compliance. Waiting for formal legislation is no longer a viable option.

Key areas to focus on include:

  • Governance and Risk Management: Establishing clear cybersecurity policies and procedures that meet NIS2’s expanded requirements.
  • Incident Detection and Reporting: Implementing faster and more comprehensive processes for identifying and notifying authorities about cyber incidents.
  • Staff Training and Awareness: Prioritising human-centric cybersecurity, ensuring employees are equipped to recognise and respond to cyber threats effectively.
  • Supply Chain Security: Assessing and managing risks across the entire supply chain to prevent indirect vulnerabilities.

The Importance of Timely NIS2 Compliance for Your Organisation

Failure to comply with the NIS2 Directive can lead to severe financial penalties, long-lasting reputational damage, and significant operational disruptions that affect every level of your organisation. As the European Union tightens cybersecurity regulations, the bar for protecting critical infrastructure and digital services has been raised significantly. This makes timely and thorough preparation not just advisable, but essential for all public and private sector organisations operating within the EU. 

MetaCompliance specialises in guiding organisations through these complex regulatory landscapes, offering a human-centric cybersecurity platform that seamlessly integrates engaging staff training, automated risk management, and streamlined compliance reporting. Our solutions ensure that your organisation remains fully protected, compliant, and resilient against evolving cyber threats.

Download our free guide Navigating NIS2: Essential Insights for EU Organisations, or contact us today to learn how we can help you successfully navigate the NIS2 compliance journey with confidence and clarity.

Other Articles on Cyber Security Awareness Training You Might Find Interesting