How to approach NIS?

Who is affected by the NIS Directive?

The NIS Directive covers seven fundamental areas – energy, transport, banking, financial market infrastructure, health, drinking water supply and distribution, and digital infrastructure. National security authorities had until the end of September 2018 to compile a list of companies providing services which fall under the NIS Directive. Registration into the register of basic service providers (register prevádzkovateľov základných služieb) is required by anyone who provides a service defined in the relevant law in their individual country. In Slovakia’s case, this is anyone who’s business activity falls under attachment no. 1 of the cybersecurity act.

Despite this, it may not be clear to everyone whether they should or should not register. If you are unsure, we can advise you.

Where to start?

Including yourself in the register is only the first step towards ensuring security. Companies and institutions have two fundamental requirements:

• to set up and maintain information security,
• to monitor and report security incidents to the responsible authority defined in national legislation, either to the National unit or to the responsible CSIRT team (Computer Security Incident Response team). Incidents must be reported right away, within a maximum of 48 hours.

How does it work?

1. Environment and GAP analysis

First, our experts will conduct an analysis of your technological and process preparedness for cyber-attacks, they will check their compliance with security standards. Through this, they will discover any weaknesses which need to be eliminated.

2. Implementation

Based on the GAP analysis, our company will work out a series of actions, processes, and technologies which need to be implemented. Based on their priority, our experts will secure individual areas to comply with standards.

3. Monitoring

We offer the option of connecting your entire IT environment to a centralised monitoring location – our SOC. Our skilled and certified experts, with “confidential” level security clearance from the National Security Authority, will monitor your systems NONSTOP in real-time – attacks and system outages don’t happen solely during working hours.

How can Binary Confidence help you?

Creating your own security team is expensive and often unrealistic in regard to the availability of skilled experts. Our company has a team of TOP experts with years of professional experience with highly demanding projects for companies, the EU, and national security.

Why choose Binary Confidence’s SOC

• Saves time, money, and manpower
• We offer the security services of certified and highly qualified experts
• Monitored in real-time nonstop (24/7)
• Immediate response
• Meets the highest security standards in accordance with ISO 27001
• Easy to read reports for management about the company’s information security status
• Transparency or the client