NIS2 checklist for compliance with the new EU directive
Practical guide to implementing the new EU requirements
- Overview of the requirements of the directive
- Step-by-step guide to implementation
- Recommendation of a software solution
The EU is tightening cybersecurity requirements, and the new NIS2 Directive is changing the rules of the game for companies across Europe. What was previously only an issue for critical infrastructures (“KRITIS”) will affect numerous medium-sized organizations from 2025 onwards, including companies in the energy, healthcare, transport, administration, finance, IT services, and many other sectors.
The directive applies to companies with 50 or more employees or an annual turnover of €10 million or more.
Those who fail to act now risk fines, reputational damage, and security breaches that can be costly.
To help you stay on top of things, we have developed a practical guide with a checklist for NIS2 implementation. Our paper shows you step by step how to prepare your company for the new requirements and which tools can provide you with optimal support.
Why NIS2 is relevant now
The NIS2 Directive (Network and Information Security Directive 2) requires companies in the EU to significantly increase their cyber resilience.
The focus is on:
• systematic risk management,
• technical and organizational protective measures,
• reporting obligations for security incidents,
• and management responsibility.
The goal: a uniformly high level of security for IT systems, networks, and digital services across Europe. But implementation is complex, and this is where our NIS2 checklist comes in.
Our NIS2 checklist: Your practical guide to the requirements
Many companies are currently asking themselves the same questions:
• Does NIS2 even apply to us?
• What specific obligations do we have?
• How can we implement the requirements efficiently without losing track of the big picture?
Our checklist for compliance with the NIS2 Directive provides the answers.
You will receive a compact overview of the legal requirements and structured step-by-step instructions that you can use to get started right away.
What you can expect:
✅ Overview of the requirements of the directive
Find out which obligations apply to your company and how to prioritize them.
✅ Step-by-step guide to implementation
From inventory to documentation: our checklist guides you through all the essential steps.
✅ Recommendation for a software solution
Learn how to implement the NIS2 requirements efficiently and transparently with a suitable tool such as DataGerry.
The biggest challenges for companies
Many organizations underestimate what NIS2 means in practical terms.
This is because, in addition to technical measures, management systems, processes, and evidence are also required.
Some of the most important issues that companies need to address now are:
1. Assess the initial situation:
Check whether and to what extent your company is affected by NIS2.
2. Establish risk management:
Systematically record, assess, and document risks.
3. Implement technical and organizational protective measures – from patch management to access control.
4. Introduce reporting processes:
Security incidents must be reported within clear deadlines.
5. Raise awareness among employees:
Training becomes mandatory.
6. Involve suppliers:
External partners must also be part of your security strategy.
7. Fulfill documentation requirements:
All measures must be documented and verifiable at any time.
Our checklist shows you how to implement these points in the right order and with clear responsibilities.
👉 Download now:
Instant contact