Contact by mail

NIS2 directive – Network and Cyber Security compliance

NetNordic ensures a smooth deployment of network security on critical basic businesses, in order to be compliant with the EU NIS2 directive.

What is new about NIS2 directive?

The Network and Information Security (NIS) Directive is the first piece of EU-wide legislation on cybersecurity, to achieve a high common level of cybersecurity across the Member States. To respond to the growing threats posed with digitalization and the surge in cyber-attacks, the Commission has submitted a proposal to replace the NIS Directive and thereby strengthen the security requirements, address the security of supply chains, streamline reporting obligations, and introduce more stringent supervisory measures and stricter enforcement requirements, including harmonized sanctions across the EU.

The proposed expansion of the scope covered by the NIS2 directive, by effectively obliging more entities and sectors to take measures, would assist in increasing the level of cybersecurity in Europe in the longer term.

As a result of NIS2, the covered companies and organizations must meet particularly stringent obligations in two key areas: risk management and reporting to authorities. In addition, the authorities will have significantly strengthened supervisory powers.

Which industries does it cover?

EU NIS2 directive applies to all basic service providers, including: Healthcare, Water Supply, Transport, Energy, Banking & Financial market infrastructure, Digital Service Providers, Digital Infrastructure, Wastewater & Waste management, Food, Public Administration, Space, Postal and Courier Services, Manufacturing of Critical Products (Pharmaceuticals, Medical Devices, Chemicals).

NIS2 directive NetNordic

How can NetNordic help you be compliant with the directive?

NetNordic makes a risk-based assessment of your network utilizing best-in-industry assessment criteria. Creating network-functionality with strict network-policies, only to allow expected traffic thereby minimizing attack surface by design. Adding UTP functionality with best-in-class NGFW-vendor and forwarded all traffic and events to a certified 24/7-365 SOC for live analysis.

SOC will report anomalies and security violations to customers’ security advisory board with recommendation on mitigation and action plans.  

Transparent for 3rd party revision to be compliant with ISO and ISAE certifications.

Full change and device configuration history are always available for revision.  

NIS directive EU NetNordic

NetNordic Denmark A/S has implemented an ISMS (Information Security Management System) based on ISO 27001: 2017 and a PIMS (Personal Information Management System) based on ISO 27701: 2019.

A certification is planned within the 2 ISO standards. In 2021, NetNordic Denmark A / S has had 2 auditor’s statements prepared without remarks: ISAE 3402 declaration of compliance with ISMS / ISO 27001 and ISAE 3000 on compliance with ISO 27701 / GDPR.

In addition, NetNordic Denmark A/S follows the obligations imposed by legislation and by our customers and has implemented governance policies regarding human rights, whistleblowing, environment, bribery and more.

NIS2 directive applies to all basic service providers, including: Healthcare, Water Supply, Transport, Energy, Banking & Financial market infrastructure, Digital Service Providers, Digital Infrastructure, Waste water & Waste management, Food, Public Administration, Space, Postal and Courier Services, Manufacturing of Critical Products (Pharmaceuticals, Medical Devices, Chemicals).

Technology

NIS2 directive IOT