How to approach NIS?

What is NIS?

What is NIS?

IT is becoming an increasingly significant part of our lives. Security incidents at companies which manage databases containing sensitive information, or at those which serve an important role in household, corporate, or national operations, can have a substantial negative affect on the general population.

 

In order to protect against them, the European parliament accepted a directive on the security of network and information systems (NIS). The NIS Directive was to be incorporated into the laws of EU member states.

Who is affected by the NIS Directive?

The NIS Directive covers seven fundamental areas – energy, transport, banking, financial market infrastructure, health, drinking water supply and distribution, and digital infrastructure. National security authorities had until the end of September 2018 to compile a list of companies providing services which fall under the NIS Directive. Registration into the register of basic service providers (register prevádzkovateľov základných služieb) is required by anyone who provides a service defined in the relevant law in their individual country. In Slovakia’s case, this is anyone who’s business activity falls under attachment no. 1 of the cybersecurity act.

Despite this, it may not be clear to everyone whether they should or should not register. If you are unsure, we can advise you.

Where to start?

Including yourself in the register is only the first step towards ensuring security. Companies and institutions have two fundamental requirements:

  • to set up and maintain information security,
  • to monitor and report security incidents to the responsible authority defined in national legislation, either to the National unit or to the responsible CSIRT team (Computer Security Incident Response team). Incidents must be reported right away, within a maximum of 48 hours.

Security precautions

Businesses have two years after being included in the register to set up IT security; correctly implemented security brings a company considerable savings. Companies which manage their security responsibly, by adopting the directive, will only have minimal costs associated with NIS.

Confirmation of compliance

After implementation, it is necessary to pass an audit which confirms compliance with the level of security required by the NIS Directive and national legislation. According to national legislation, the audit is conducted by an authorised responsible party defined by the authority.

How does it work?

1. Environment and GAP analysis

First, our experts will conduct an analysis of your technological and process preparedness for cyber-attacks, they will check their compliance with security standards. Through this, they will discover any weaknesses which need to be eliminated.

2. Implementation

Based on the GAP analysis, our company will work out a series of actions, processes, and technologies which need to be implemented. Based on their priority, our experts will secure individual areas to comply with standards.

3. Monitoring

We offer the option of connecting your entire IT environment to a centralised monitoring location – our SOC. Our skilled and certified experts, with “confidential” level security clearance from the National Security Authority, will monitor your systems NONSTOP in real-time – attacks and system outages don’t happen solely during working hours.

 

How can Binary Confidence help you?

Creating your own security team is expensive and often unrealistic in regard to the availability of skilled experts. Our company has a team of TOP experts with years of professional experience with highly demanding projects for companies, the EU, and national security.

Why choose Binary Confidence’s SOC

  • Saves time, money, and manpower
  • We offer the security services of certified and highly qualified experts
  • Monitored in real-time nonstop (24/7)
  • Immediate response
  • Meets the highest security standards in accordance with ISO 27001
  • Easy to read reports for management about the company’s information security status
  • Transparency or the client

News & Blog

Contact

Address

Binary Confidence s.r.o.
Špitálska 53,
811 01 Bratislava
Slovak republic

E-mail

info@binconf.com
support@binconf.com

Telephone

+421 2 321 999 80

I agree with Privacy and Data Protection Policy
By clicking [I agree] you consent to processing your personal data by company Binary Confidence s.r.o. and you accept Privacy and Data Protection Policy.