NIS(2): European regulation

The Directive on Security of Network and Information Systems (NIS Directive) was the first piece of EU-wide legislation on cybersecurity. Its successor, NIS2, hopes to improve the cyber-resilience of the EU, thereby ensuring the safety of operations.

For Operators of Essential Services (OES), such as within Electricity, Oil, Gas, and Drinking Water, NIS means that they need to protect the Safety, Reliability and Availability. Operators of essential services (OES) are required to demonstrate compliance to these requirements.

Your challenges

• Which control framework should be used and how to demonstrate NIS compliance?
• Is your OT organization using ‘state of the art’ security measures?
• Are those measures up to date?
• Are you in control of your OT cyber security organization?

How we support you

Secura offers two types of OT NIS Compliance Assessments:

1. NIS Compliance Baseline Review: verifies the design and existence of required organizational security control implementations.
   
2. NIS Compliance Enhanced Assessment: assesses and verifies the existence, working and effectiveness of all security control implementations.

ABOUT SECURA

Secura is a leading cybersecurity expert. Our customers range from government and healthcare to finance and industry worldwide. Secura offers technical services, such as vulnerability assessments, penetration testing and red teaming. We also provide certification for IoT and industrial environments, as well as audits, forensic services and awareness training. Our goal is to raise your cyber resilience.

Secura is a Bureau Veritas company. Bureau Veritas (BV) is a publicly listed company specialized in testing, inspection and certification. BV was founded in 1828, has over 80.000 employees and is active in 140 countries. Secura is the cornerstone of the cybersecurity strategy of Bureau Veritas.