NIS Directive compliance

The EU Directive on security of network and information systems (NIS Directive) requires operators of essential services and digital service providers to implement appropriate security measures to protect, and ensure the continuity of, services that are essential to the national infrastructure.

The Directive entered into force in August 2016. EU member states – including the UK – have until May 2018 to translate it into national laws, and a further six months to identify the "operators of essential services and digital service providers" it applies to.

This page links to everything you need to comply with the NIS Directive.

Information

For general information about the NIS Directive, visit our dedicated NIS Directive page >>

Green papers

For more in-depth information about the NIS Directive, download our free green paper, The EU Network and Information Security (NIS) Directive: Compliance guidance >>
Click here for all available green papers >>

Webinars

IT Governance’s webinars cover such topics as cyber security, the GDPR, ISO 27001 and IT service management, and all of our webinar resources can be downloaded for free.

Click here to watch the recordings of our latest webinars >>

Products and services

The NIS Directive states that "Member States shall [...] encourage the use of European or internationally accepted standards and specifications relevant to the security of network and information systems."

The only relevant international standards are ISO 27001 and ISO 22301, which we’ve been helping organisations implement for over a decade.

Here are a few ways we can help meet your NIS Directive compliance needs.

Consultancy

Our consultants have over a decade’s experience of information security management and cyber security projects. We’ve led more than 400 successful ISO 27001 certification projects alone, and offer a 100% guarantee of successful certification.

Follow the links below for more information on how our consultants can help you.
- ISO 27001 packaged solutions
  
  Click for more information about ISO 27001 packaged solutions >>
- ISO 22301 consultancy
  
  Click here for more information about ISO 22301 consultancy >>
- Incident response
  
  Click here for more information about cyber security incident response consultancy >>

Documentation toolkits

Creating documentation for your management system is never easy, and can run to hundreds of pages. IT Governance’s documentation toolkits contain fully customisable templates written by our consultants:
- ISO 27001 ISMS Documentation Toolkit
  Click here for more information about the ISO 27001 ISMS Documentation Toolkit >>
- ISO 22301 BCMS Implementation Toolkit
  Click here for more information about the ISO 22301 BCMS Implementation Toolkit >>

Penetration testing

Penetration testing is the most effective way of identifying exploitable vulnerabilities in your company’s Internet–facing applications and infrastructure, and allows you to apply appropriate mitigation.

Click here for more information about penetration testing >>

Software

The NIS Directive states that, for operators of essential services and digital service providers alike, technical and organisational security measures should be appropriate and proportionate to identified risks.

vsRisk™ is the industry-leading ISO 27001-compliant risk assessment tool.

Click here for more information about vsRisk >>

Training

IT Governance’s training programme is built on the foundations of our extensive practical experience designing and implementing management systems.
- Click here for more information about ISO 27001 training courses >>
- Click here for more information about ISO 22301 training courses >>
All of our training courses are available in classroom and Live Online formats.

Contact us

To discuss your ISO 27001 requirements, please call us on 00 800 48 484 484 or email servicecentre@itgovernance.eu

NIS Directive compliance

Information

Green papers

Webinars

Products and services

Consultancy

ISO 27001 packaged solutions

ISO 22301 consultancy

Incident response

Documentation toolkits

Penetration testing

Software

Training

Contact us