NIS2 and ACN 2026 deadlines: how automation reduces compliance costs and penalty risk

Team collaborating around a computer in an office.

The entry into force of the NIS2 (Network and Information Security) Directive represents one of the most significant regulatory challenges of recent years for Italian and European SMEs in particular. Under the close supervision of the ACN (National Cybersecurity Agency), the paradigm of corporate cybersecurity has been transformed from a secondary to a primary topic, with heavy penalties of a personal nature for members of governing bodies.

The challenge: Managing regulatory overload in the age of uncertainty

Many organisations today are at a crossroads: devote a significant budget to compliance by diverting important resources from other activities of greater business impact or risk non-compliance. The problem lies in the very nature of NIS2: this directive requires continuous monitoring. An initial “set-up” is not enough; ongoing management of vulnerabilities, supply chain security and business continuity must be demonstrated.

Managing this flow with manual tools leads to three irremediable criticalities:

  1. Explosion of Operating Costs: The employment of qualified human resources in data-entry and evidence-gathering tasks.
  2. Time Dilation: The latency between the identification of a regulatory gap and its resolution can become fatal during an inspection.
  3. Lack of Centralised Governance: Without an overview, information silos between IT, OT, Legal and Management prevent a rapid and coordinated response.

The Virgil.ia Solution: AI as Compliance Enabler

Virgil.ia was designed to be the platform of reference in the Information Security Governance landscape with the objective of transforming compliance from a static burden to a fluid process.

  • Dynamic Control Mapping: The platform constantly cross-references the implemented security measures with the specific requirements of the Regulations, automatically reporting any deviations.
  • Automation of Evidence: Instead of collecting evidence manually for each Audit, Virgil.ia creates structured reports with all the necessary evidence, making the company “always ready” for an audit.
  • Efficiency and Savings: By implementing Virgil.ia, companies can reduce compliance management costs by up to 50%, freeing up resources for investment in innovation and active defence.