This website uses cookies. View our cookie policy

NIS Directive Consultancy – cyber resilience solutions

The EU Directive on security of network and information systems (NIS Directive) requires operators of essential services (OES) and digital service providers (DSPs) to implement “appropriate and proportionate technical and organisational measures” to manage the risks posed to the security of the network and information systems they use in their operations. IT Governance can help you implement and maintain a cyber resilience programme to ensure the security and continuity of your systems, based on international standards, in compliance with Article 19 of the Directive.

Speak to an expert


A cyber resilience management system based on international standards

Article 19 of the Directive states that member states should “encourage the use of European or internationally accepted standards and specifications relevant to the security of network and information systems”. There are two relevant international standards that we recommend: ISO/IEC 27001:2013, the international standard for an information security management system (ISMS), and ISO 22301:2012, the international standard for a business continuity management system (BCMS).

Solutions for complying with the NIS Directive

Drawing on our unique blend of practical information security know-how and proven management system consultancy expertise, IT Governance offers a comprehensive range of solutions to help you implement a cyber resilience programme that helps you identify, protect, detect, respond to and recover from a disruptive incident.



What we can do

Identify your cyber security gaps

Assess your cyber security posture and identify a practical route to minimise your risks.

Solution: Cyber Health Check

Implement basic cyber security measures

Provide assurance that you have taken basic cyber security measures.

Solution: Cyber Essentials and Cyber Essentials Plus certification

Implement measures to protect networks and information systems

Implement a comprehensive cyber security system that incorporates regular risk assessments and supports continual improvement.

Solution: Information security management and ISO 27001 compliance

Detect vulnerabilities across your systems and networks

Assess your systems and networks for any potential weaknesses because of system configuration issues, hardware or software flaws, and operational weaknesses.

Solution: Penetration testing

Respond to a cyber incident

Implement a cyber incident response programme.

Solution: Cyber incident response consultancy

Respond and recover from a cyber attack

Implement a business continuity management process.

Solution: Business continuity management and ISO 22301 compliance


Why use IT Governance for your NIS Directive compliance needs?

We offer a hassle-free service and transparent pricing.


Our methodology and tools have been honed over 15 years.


We support independently accredited certification – you can use the certification body you want.


Our team led the world’s first successful certification to BS 7799, the forerunner of ISO 27001.


Our implementation approach and methodology is pragmatic, proven and straightforward.


You receive crucial input to help you develop a business case, allowing you to secure the necessary information security investment.


You receive a 100% guarantee of successful certification.



How we’ve helped companies just like yours implement best-practice management systems

Read our case studies to discover how we’ve helped organisations across the globe achieve compliance with management system standards..

View all case studies >>


Some of our clients

We’ve helped hundreds of organisations across many different industries and sectors improve their information security and business continuity practices.


What our clients say

“Having IT Governance on hand to guide our swift adoption of the ISO 27001 standard and provide ongoing expert support has been invaluable. They really understood the needs of a technology enterprise like ours.”

- Paul Green, Wirefast


“I would have no hesitation in recommending IT Governance to others. The main advantage was their flexibility. IT Governance tailored their services, (whether it be training or consultancy) to our specific needs.”

- Paul Berry, Senior Project Manager, Martin Dawes Solutions


“On behalf of myself and colleagues, a sincere thank you for all your input helping us achieve certification to the ISO 27001 standard. Here we are, just 6 months after we started the project and the outcome has been described by the auditor as ‘a delight to audit’. Much of this has been down to the mentoring and coaching style IT Governance has used to steer us to our goal.”

- David Gilbert, Global Business Development Manager, Goal Group of Companies


For more client testimonials and details of projects we’ve undertaken, please see our consultancy case studies page >>


Our credentials

IT Governance is widely recognised as a leading consultancy by certification bodies such as BSI, NQA, LRQA and DNV.


Let’s work together to get things moving

Whatever the nature or size of your problem, we are here to help. Click the button below to request a call and one of our experts will get in touch as soon as possible.


Speak to an expert

Please contact us for further information or to speak to an expert.

Contact us