NIS2 readiness assessment
In a few minutes, gauge your compliance with the NIS2 Directive, and leave with your priorities.
≈ 5 minutes · no sign-up
NIS2 applies to a wide range of essential and important entities across the EU, and to many suppliers in their supply chain. Answer the 18 statements below: everything is computed in your browser, and no answer is stored.
Answer each statement based on your real situation. Your score and priorities appear instantly in your browser. Nothing is sent anywhere.
1.Governance and accountability
2.Risk-management measures
3.Supply chain security
4.Detection and access control
5.Incident reporting
6.Resilience and hygiene
Answer every statement to reveal your score.
FAQ
What is NIS2?
NIS2 is the EU directive on the security of network and information systems, replacing NIS. It expands scope to more sectors and strengthens requirements on risk management, incident reporting and management accountability.
Who is subject to it?
"Essential" and "important" entities across many sectors, plus many organizations pulled into scope through the supply chain of those entities.
What are the deadlines?
The transposition deadline for member states was October 2024. Enforcement is now underway, with strict reporting deadlines: 24 hours, 72 hours and one month.
What are the penalties?
For essential entities, fines can reach 10 million EUR or 2% of total worldwide annual turnover, whichever is higher. Management can be held liable.
Does this assessment replace legal advice?
No. It is an indicative tool to gauge your maturity and prioritize your actions. It does not constitute legal advice.