Partner
ISO/IEC27001/KRITIS -Auditor
NIS-2 Consulting
The German “NIS-2 Implementation and Cyber Security Strengthening Act” (NIS2UmsuCG) is based on the European “Network and Information Security Directive 2” (NIS-2). The NIS2UmsuCG is scheduled to come into force at the end of 2025. It aims to establish a high, uniform level of cyber security for European industry and business, and to strengthen the cyber security and resilience of critical EU infrastructures.
Write to us without obligation:
Get in touch now
The NIS2UmsuCG transposes the EU’s NIS2 Directive into national law and defines specific security requirements that the companies and organizations concerned must implement. Among other things, the law obliges organizations to take appropriate measures to detect, prevent and respond appropriately to cyber attacks.
Furthermore, if affected, a risk-oriented approach must be taken to determine adequate security measures. The defined security measures must correspond to the state of the art. Mandatory requirements to be implemented are also: introduction of processes for security incident management, emergency and crisis management, data backup management, contractor, supply chain and service provider management and others.
The NIS2 Implementation Act is an important step towards improving cyber security in the European economy, particularly in the area of critical services (KRITIS). The KRITIS Umbrella Act is also of great importance for the KRITIS environment. It complements the NIS2 legislation in order to regulate and strengthen the physical protection of critical infrastructures in Germany in a uniform and cross-sectoral manner.
Managed ISMS Service
Manage your ISMS, DSMS or BCMS easily and digitally via the “Managed ISMS Service” hosted in cloudgermany.
Reporting Trends & Solutions
Your update from auditing: Relevant insights on audit, reporting, ESG, GRC, deals, digital transformation, cybersecurity & Co. – compact, solution-oriented and from a single source.