Gratis download

NIS2 Compliance Checklist

Stapsgewijze gids voor risicoanalyse, incidentafhandeling (24u/72u), supply chain-beveiliging en managementverantwoordelijkheid.

Alle essentiele NIS2-vereisten voor essentiele en belangrijke entiteiten.

Bruikbare checklist — niet alleen theorie

Opgesteld door EU-compliance-specialisten

PDF-formaat — afdrukken of delen met uw team

Volledig gratis, geen creditcard vereist

Ontvang uw gratis checklist

Geen creditcard nodig. Direct downloaden.

We sturen de downloadlink één keer naar het opgegeven e-mailadres. Marketing-e-mails worden alleen verzonden als u het vakje hierboven aanvinkt.

Wat er in zit

Alles wat u nodig heeft om uw compliance-traject te beoordelen, plannen en uitvoeren.

Risk Analysis Requirements - comprehensive cybersecurity risk assessment framework

Incident Handling Procedures - 24-hour early warning and 72-hour notification workflows

Supply Chain Security checklist - third-party ICT risk assessment and contractual requirements

Business Continuity planning - backup management, disaster recovery, and crisis response

Encryption and Access Control requirements - technical security measures and implementation

Vulnerability Disclosure procedures - coordinated vulnerability handling and patch management

ENISA Notification Process - step-by-step regulatory reporting templates and timelines

Management Accountability framework - board-level oversight and personal liability provisions

Cross-Border Coordination guide - multi-jurisdiction incident reporting and CSIRT engagement

Cyberhygiene Training program - employee awareness, phishing defense, and security culture

Gebouwd voor EU-gereguleerde financiële dienstverlening

NIS2ISO 27001DORA

Veelgestelde vragen

Does NIS2 apply to my organization?

NIS2 applies to essential entities (energy, transport, banking, health, digital infrastructure, ICT service management, public administration) and important entities (postal, waste, chemicals, food, manufacturing, digital providers, research). If you have 50+ employees or EUR 10M+ revenue in these sectors, NIS2 likely applies to you.

What are the NIS2 incident reporting deadlines?

NIS2 requires a three-stage notification: an early warning within 24 hours of becoming aware of a significant incident, an incident notification within 72 hours with an initial assessment, and a final report within one month with root cause analysis and remediation measures.

What happens if we don't comply with NIS2?

Non-compliance can result in fines up to EUR 10 million or 2% of global annual turnover for essential entities (EUR 7 million or 1.4% for important entities). Management bodies can also be held personally liable, with potential temporary bans from management functions.

How does NIS2 relate to ISO 27001?

ISO 27001 provides an excellent foundation for NIS2 compliance, as both focus on risk-based cybersecurity management. However, NIS2 adds specific requirements around incident reporting timelines, supply chain security, and management accountability that go beyond ISO 27001. This checklist maps the gaps between them.

Aan de slag

Klaar om uw compliance te automatiseren?

De checklist is pas het begin. Matproof automatiseert bewijsverzameling, beleidsgeneratie en continue monitoring, zodat u zich kunt richten op uw bedrijf.

Demo boeken Prijzen bekijken