NIS2 in the
supply chain

NIS2 Requirements

The NIS2 Directive highlights that covered entities should manage cyber risk by using “appropriate and proportionate technical and organisational measures.”

These measures include the following:

  • Risk analysis and information security policies
  • Thorough incident handling
  • Business continuity and crisis management
  • Robust supply chain security
  • Extensive network security
  • Vulnerability handling and disclosure
  • Policies and procedures that assess the effectiveness of cybersecurity risk management
  • Use of cryptography and encryption
  • Use of multi-factor authentication

 

Important: Supply chain security

As a European essential or important organisation, you must enhance your digital security and that of your supply chain, regardless of supplier location. This involves implementing strong security measures and collaborating closely with suppliers to mitigate cyber threats. Ensure NIS2 requirements are included in contracts, either within your terms and conditions or in a separate agreement.

As a supplier, it’s crucial to show that you have effective cybersecurity measures. The best way to do this is by obtaining the NIS2 Quality Mark certification. This certification provides you with a comprehensive toolkit outlining all necessary steps. After implementing these measures, you’ll undergo an audit to secure your certification.

Get your NIS2 Certification

Together Digital Safe (Samen Digitaal Veilig) has developed this website for international suppliers as a tool with practical to-do lists that translate the NIS2 directive into practical actions. This will facilitate cooperation between essential and important organisations and their suppliers.

NIS2 Corporate starter package

The NIS2 Corporate Starter Package is available for all essential and important companies that must comply with NIS2. Check it out here

NIS2 Quality Mark package for suppliers

Become a participant and get all the tools, templates, and personalised support you need for NIS2 compliance, including the NIS2 Quality Mark. Check it out here

NIS2 Quality Mark package for suppliers

Become a participant and get all the tools, templates, and personalised support you need for NIS2 compliance, including the NIS2 Quality Mark. Check it out here

NIS2 Corporate starter package

The NIS2 Corporate Starter Package is available for all essential and important companies that must comply with NIS2. Check it out here