Key point: NIS2 makes pre-employment checks and periodic re-screenings of employees a mandatory compliance measure in Austria.
The EU NIS2 Directive creates new requirements in Austria for the screening of employees in critical infrastructures and highly critical enterprises. Pre-employment checks and regular re-screenings thus become an essential component of cybersecurity compliance.
The NIS2 Directive (Network and Information Security) obligates Austrian operators of critical infrastructures as well as larger enterprises to implement enhanced security requirements. A central aspect of this implementation is the screening of personnel with access to sensitive systems and data.
Pre-employment checks – screening before hiring – thus become a legal necessity. They serve to mitigate risk through background checks of candidates who will gain access to critical infrastructures. In parallel, NIS2 requires regular re-screenings of existing employees to monitor risks throughout their employment.
For Austrian enterprises, this results in new organizational and administrative burden. The implementation of these measures must be carried out in compliance with data protection law and must be compatible with Austrian labour law and the GDPR. CISOs must integrate these processes into their security strategies and ensure that screenings are conducted regularly, documented, and traceable.
Source: news.google.com · Published 18 June 2026
Lumi AI News — AI-assisted curation pursuant to Art. 50 EU AI Act. Paraphrase and classification by Lumi News Pipeline v1.7.1.