<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"><channel><title>NIS2 Hub’s Blog</title><description>Plain-English guides to NIS2, the EU AI Act, DORA, the Cyber Resilience Act, ISO 27001/42001, GDPR and AI governance — with open-source tooling benchmarks, webinars and workshops for compliance and security teams.</description><link>https://go.nis2.org.ua</link><item><title>Writing an AI Ethics Policy</title><link>https://go.nis2.org.ua/blog/ai-ethics-policy</link><guid isPermaLink="true">https://go.nis2.org.ua/blog/ai-ethics-policy</guid><description>How to write an AI ethics policy that people actually use, including AI and academic integrity.</description><pubDate>Thu, 18 Jun 2026 00:00:00 GMT</pubDate></item><item><title>FISMA Compliance and Its EU Parallels</title><link>https://go.nis2.org.ua/blog/fisma-compliance</link><guid isPermaLink="true">https://go.nis2.org.ua/blog/fisma-compliance</guid><description>A short primer on FISMA compliance for US-adjacent teams, and how it maps to EU frameworks.</description><pubDate>Wed, 17 Jun 2026 00:00:00 GMT</pubDate></item><item><title>AI Transparency: What You Have to Disclose</title><link>https://go.nis2.org.ua/blog/ai-transparency</link><guid isPermaLink="true">https://go.nis2.org.ua/blog/ai-transparency</guid><description>AI transparency is becoming a legal requirement. Here is what disclosure looks like in practice.</description><pubDate>Tue, 16 Jun 2026 00:00:00 GMT</pubDate></item><item><title>High-Risk AI Systems Under the AI Act</title><link>https://go.nis2.org.ua/blog/high-risk-ai-systems-ai-act</link><guid isPermaLink="true">https://go.nis2.org.ua/blog/high-risk-ai-systems-ai-act</guid><description>What makes an AI system high risk under the EU AI Act, and the obligations that follow.</description><pubDate>Mon, 15 Jun 2026 00:00:00 GMT</pubDate></item><item><title>Responsible AI Practices That Actually Ship</title><link>https://go.nis2.org.ua/blog/responsible-ai-practices</link><guid isPermaLink="true">https://go.nis2.org.ua/blog/responsible-ai-practices</guid><description>Responsible AI is more than a value statement. Here are the practices that make it real inside a team.</description><pubDate>Sun, 14 Jun 2026 00:00:00 GMT</pubDate></item><item><title>Building an Incident Response Plan</title><link>https://go.nis2.org.ua/blog/incident-response-plan</link><guid isPermaLink="true">https://go.nis2.org.ua/blog/incident-response-plan</guid><description>How to build an incident response plan around the NIST incident response life cycle, ready for NIS2 deadlines.</description><pubDate>Sat, 13 Jun 2026 00:00:00 GMT</pubDate></item><item><title>Cyber Risk Management in Practice</title><link>https://go.nis2.org.ua/blog/cyber-risk-management</link><guid isPermaLink="true">https://go.nis2.org.ua/blog/cyber-risk-management</guid><description>A short, practical take on cyber risk management: how to move from a risk register to real risk reduction.</description><pubDate>Fri, 12 Jun 2026 00:00:00 GMT</pubDate></item><item><title>Supply Chain Security: A NIS2 Priority</title><link>https://go.nis2.org.ua/blog/supply-chain-security</link><guid isPermaLink="true">https://go.nis2.org.ua/blog/supply-chain-security</guid><description>Why supply chain security is now a regulated obligation and how to assess the security of your suppliers.</description><pubDate>Thu, 11 Jun 2026 00:00:00 GMT</pubDate></item><item><title>Data Breach Notification Under NIS2 and GDPR</title><link>https://go.nis2.org.ua/blog/data-breach-notification-nis2</link><guid isPermaLink="true">https://go.nis2.org.ua/blog/data-breach-notification-nis2</guid><description>What data breach notification means under NIS2 and GDPR, who you must tell, and how fast the clock runs.</description><pubDate>Wed, 10 Jun 2026 00:00:00 GMT</pubDate></item></channel></rss>