NIS-2

Cybersecurity for critical and important sectors

Digital networking is constantly increasing – and with it the risks of cyberattacks and disruptions to critical infrastructure. To counteract the growing threat potential, the NIS-2 Directive was adopted at EU level. It obliges companies from critical and important sectors to align their cybersecurity concepts with clear standards and be prepared for emergencies.

 

The most important thing first: Check whether you are affected with the following questions!

  • Is your company active in a critical or important industry – e.g. energy, healthcare, transport, finance, IT services, data centres, waste disposal, food production?
  • Do you employ more than 50 people or have a turnover of more than €10 million?
  • Do you use IT systems that are crucial for maintaining your services?

Whatever the answer is – with the experts at CIS, you are on the safe side and can only benefit from an NIS-2 implementation: The guideline offers optimal synergy effects with other standards such as ISO 27001 and makes your company secure, resilient and future-proof!

Blue wireframe hammer of judge

What is NIS-2?

NIS-2 stands for the revised EU Network and Information Security Directive. It is the successor to the original NIS Directive from 2016 and was developed to create uniform and more effective standards for cybersecurity across Europe.

The directive:

  • requires strict security measures (e.g. such as risk management, emergency plans, training),
  • provides for reporting obligations in the event of security incidents within 24 hours,
  • imposes personal liability on managers in the event of breaches.

Who is affected?

Companies in critical and important sectors are particularly affected:

Non-compliance could result in fines totalling millions, and managers have a liability obligation.

Despite pending legislation in Austria, NIS-2 will come. However, implementing the directive will require time, resources and personnel: CIS experts can be consulted to manage the complexity of NIS-2. Anyone starting to implement NIS-2 now is well advised to do so: Frameworks such as ISO 27001 can also be consulted to create a solid foundation for the fulfilment of cyber security measures.

To the overview

Tips for NIS-2 that you can implement immediately:

  • Use NIS-2 as an opportunity for resilience
  • Don’t wait for the law. Start now
  • Don’t underestimate the effort involved.
  • Assume that you will need external expertise. The rush on NIS-2 test centres will be great when the law comes into force.
  • Stay risk-orientated = cost-efficient and effective.
  • Be prepared for a long journey.
NIS-2 and the future of cybersecurity

What is the best way to prepare?

Do you also have resource bottlenecks and little time? We’ve got your back – and with our combined NIS-2 gap analysis and our independent NIS-2 test report, we give you everything you need for legally compliant, efficient and rapid implementation. Find out more about our products!

  • Combined NIS-2 gap analysis: NIS-2 and ISMS are equally needed? With our gap analysis, we can bridge the gap for your certification.
  • Independent NIS-2 test report: You will receive an independent NIS-2 test report including compliance status and recommendations directly from the NIS-2. compliance status and recommendations directly from the field – so you are perfectly prepared when the directive comes into force.
  • Customised management training: We respond to the individual requirements of your company and convey the content quickly and efficiently!
For management training To the gap analysis

Utilise synergy effects!

Your advantages with CIS

You need or want to implement NIS-2 now? The experts at CIS have been selected by the Federal Ministry for Economic Affairs, Energy and Tourism to carry out NIS-2 audits in Austria – so you are in good hands!

  • Many years of experience in information security guidelines
  • Practical, pragmatic approach to implementation
  • Customised adaptation to specific company risks
  • CIS has been a qualified body for NIS audits since 2018 – we will accompany you to the end!

ISO 27001 and NIS-2

  • Ideal for companies with existing or planned ISO 27001 certification
  • Combined NIS-2 gap analysis creates efficient link between both requirements
  • Supplementing NIS-2 with a proven ISMS strengthens market position
  • Saving time and resources through parallel analysis
  • Detailed report that covers both catalogues of requirements
  • A clear competitive advantage in economically challenging times

News

From the NIS-2 division

Filter Dropdown
To the news overview

An overview of our certifications

Request

We are delighted that you are interested in our services. We will be happy to send you further information. Please provide us with the following information:

    Field

    Contact details

    Note: Please fill in all fields marked with an asterisk (*).

    Do you have any specific questions?

    max. 2000 characters

    privacy policy

    Training Overview

    Training Overview

    Our experts for your success

    With comprehensive expertise and proven processes, we support your company in being optimally prepared for the future.