NIS 2

NIST 2

In short

Network and Information Security Directive 2 (NIS2) is an EU directive aimed at enhancing cybersecurity across critical sectors by imposing stricter security and incident reporting obligations.

My approach is hands-on and business-oriented — mapping your current posture, identifying gaps, and delivering a clear roadmap to full compliance. I support every step: from policy documentation and process design to training and technical controls.

NIST 2 COMPLIENCE

Key Comlplience Steps

• Scope Assessment: Determine if your organization falls within the sectors and size thresholds defined by NIS2.
• Governance Framework: Establish a governance structure with clear accountability for cybersecurity risk management.
• Risk Management: Implement risk management measures to identify and mitigate cybersecurity risks.
• Incident Response: Develop and maintain incident response plans, including procedures for incident detection, reporting, and recovery.
• Supply Chain Security: Assess and manage cybersecurity risks in the supply chain and third-party relationships.
• Continuous Improvement: Regularly review and update security policies and procedures to adapt to evolving threats.

Further reading: eur-lex

LEGISTLATION

BUILD A SECURE CULTURE

Compliance isn't just about documents — it’s about behavior. I help embed security-minded thinking across your organization through:

• Security awareness training
• Policy creation and rollout support
• Role-based access control & governance practices
• Incident response planning and table-top exercises
• Internal audit coaching and risk communication

Together, we create sustainable practices that reduce regulatory risk and build lasting stakeholder confidence.

Practical, Trusted Security Expertise

I’m a multidisciplinary developer and consultant with a deep background in full stack development, cybersecurity, and compliance. My approach is pragmatic — blending technical depth with real-world security needs.

I’ve worked across sectors on secure systems design, vulnerability response, policy building, and audit preparation. With over 10 years of experience, I understand the risks, challenges, and regulations businesses face today.

Let’s build systems that are not just functional, but secure and future-proof.

Get in Touch