REGULATORY & COMPLIANCE
NIS 2 Workshop for Beginners
- In a half-day workshop, all essential aspects of NIS 2 will be discussed, clarifying questions such as:
- To what extent are they affected (which business units)?
- What does being affected mean to them?
- By when must they have implemented what?
- What efforts and costs will they incur?
- What are the consequences if they have deficiencies in a test?
- What is an efficient way forward towards compliance?
- Especially for companies that come into contact with the topic of NIS for the first time
- Low-threshold and cost-efficient
- Your added value:
- Compact overview of requirements that come their way
- Clear understanding of a sensible way forward
NIS 2 Gap Analysis
- A comprehensive gap analysis for NIS 2 will be conducted in a two-day workshop that will address all major areas:
- Governance
- Risk Management
- Safety requirements
- Reporting requirements
- Third Party Risk Management
- Existing documents and measures are reviewed and evaluated in the context of NIS 2, and any deviations and need for action are identified.
- Your added value:
- Complete picture of deviations and need for action
- List of action areas and improvement measures
- Clear understanding of the way forward (roadmap)
DORA Gap Analysis
- Specifically for the financial services sector, DORA provides an adapted (and, compared to NIS 2, even extended) list of requirements
- A comprehensive gap analysis for DORA will be conducted in a two-day workshop covering all major areas:
- Governance
- Risk Management
- Safety requirements
- Reporting requirements
- Third Party Risk Management
- Contractual obligations
- Exit strategies
- Existing documents and measures are reviewed and evaluated in the context of DORA, and any deviations and need for action are identified.
- Your added value:
- Complete picture of deviations and need for action
- List of action areas and improvement measures
- Clear understanding of the way forward (roadmap)
Further consulting and support in the field of NIS 2, DORA etc.
- Building on the gap analysis, we are happy to support you in implementing the necessary measures:
- Establishment of a governance framework
- Establishment of ICT risk management
- Development of a suitable control framework
- Establishment of an information security management system (ISMS)
- Implementation of technical and organizational measures where necessary
- Of course, we also provide support on other regulatory topics such as the Cyber Resilience Act (CRA), the General Data Protection Regulation (GDPR), EBA Guidelines, and many more.
- For each topic we will be happy to provide you with a customized and cost-efficient offer
Other services
- Consulting for outsourcing and service provider management
- Support in the selection or evaluation of IT security providers and services (including existing ones)
- Assist in the selection of CISOs and key information security/BCM positions.
- Rent-a-CISO: CISO on a temporary basis, eg. To develop strategies, build structures or implement security projects
- CISO coaching: temporary professional support for CISOs facing new challenges.
- Designing security awareness campaigns (awareness)
- Establishment of emergency and crisis management
- Establishment of business continuity management, development of resilience strategies