Our society relies on vital infrastructure: critical facilities whose reliable functioning is essential for social order and safety. Think of energy, drinking water, digital networks, transportation, healthcare and financial services. With digital transformation, these sectors are increasingly connected and vulnerable to cyber threats, disruptions and sabotage, with impacts ranging from societal disruption to serious national security risks.

In the "Vital Infrastructure" theme file, we examine:

• What vital infrastructure means anno 2025, why these sectors enjoy legal protection and how that delineation is shifting (including under the NIS2 Directive).

• Specific and current threats, including cyberattacks, ransomware, insider threats, and the vulnerability of digital chains.

• New and existing laws and regulations, such as the NIS2 Directive, Network and Information Systems Security Act (Wbni), National Security Policy, relevant European frameworks and the role of sectoral compliance.

• Task and position of supervisory organizations such as the NCSC, Telecom Agency, sectoral CERTs and their varying responsibilities.

• Insights from recent incidents and response strategies, with analyses of national as well as international cases (think energy blackouts, DDoS attacks on banks, hospital failures).

• Current developments: enhanced interconnectedness of physical and digital infrastructure, the rise of smart grids and IoT, geopolitical threats, supply chain security, increasing role of AI in detection and mitigation, and the need for public-private partnerships for digital resilience.

This dossier provides up-to-date, independent and legally informed information for professionals, policy makers and interested parties in the field of critical infrastructure and digital security in the Netherlands.