NIS 2 offers a general framework for managing cybersecurity risks, setting out broad requirements, including incident reporting, risk management, and supply chain security.
The precise technical details are left to be implemented and interpreted nationally.