Embedding cybersecurity controls into everyday business processes can help businesses comply with wide-ranging new EU cyber legislation that is due to take effect next month, but that task is being made more difficult by slow progress by EU countries