DL-65/NIS-2 (Network and Information Systems Security 2)
The NIS2 Directive reinforces some of the measures already foreseen in Decree-Law No. 65/2021, including risk assessments and incident handling. It introduces a specific set of topics that must be addressed to enhance cybersecurity for essential service operators and digital service providers in the EU.
We support organizations in complying with the requirements of the NIS2 Directive and Decree-Law No. 65/2021, relying on a team experienced in serving clients in the IT, ICS, and OT sectors.
-
Communication of the Permanent Contact Point and Security Officer
-
Inventory of Essential Assets
-
Global and Partial Risk Assessments
-
Security Plan and Updates
-
Annual Report
-
Detection, Classification, and Notification of Incidents
-
Implementation of Security Measures
Support Services for NIS-2 Implementation
We offer a comprehensive approach to assist organizations in implementing NIS-2 guidelines, with a particular focus on the following services:
-
Development of Strategy and Training Program: We assess the organization's needs and structure training programs for all members, strengthening the cybersecurity culture and addressing practical topics such as phishing and best security practices.
-
Risk Assessments: We conduct detailed evaluations to identify vulnerabilities and opportunities for improvement, using references such as the National Cybersecurity Reference Framework, NIST, and ISO 27001.
-
Business Continuity Planning and Disaster Recovery: We develop programs that enable rapid response to incidents, minimizing operational impacts and ensuring the organization's resilience.
-
Development of Documentation: We create tailored procedures to address various cybersecurity issues based on NIST guidelines and other security standards.
-
Consulting on Solutions: We assist in creating and selecting solutions tailored to the organization's strategy, guiding the choice of tools and technologies that best meet the requirements of NIS-2.