With over 10 years' experience in information security and continuity, ODO 24 provides expert support to management in carrying out its obligations under the NIS2 Directive, through coordination of activities, documentation supervision and preparation for inspections.
The NIS2 representative shall be the trusted partner of the Management Board who assumes the operational functions cybersecurity management, ensuring compliance and effective I'm here to protect you from incidents.
This way, we minimize the risk of an error or incident, and the board can have ensuring that the responsibility for digital security is in the hands I'm an experienced professional.
You don't have the resources to keep NIS2 records up and running, and you don't have the cyclical security and compliance reviews.
There's a breach in your company, and you're unsure what to report to UODO and what not to report.
You need real risk management and ongoing cybersecurity advice.
You're worried about the loopholes in contracts with ICT suppliers and the weakness in the supply chain.
Customers and partners are asking about safety, continuity and incident preparedness.
You feel that cybersecurity oversight isn't enough.
Direct discharge of the management's operational responsibilitiesReadiness for inspection and audit at any timeLimitation of the risk of management liabilityConsistency and timeliness of procedures and continuity plansSupervision of compliance with the provisions of the National Cybersecurity Act.
Conduct cyclical internal audits on compliance with the National Cybersecurity Act.
Managing cybersecurity incidents by:
Supervision of suppliers of ICT equipment and services by:
Conduct cyclical business impact analysis (BIA) reviews for business processes carried out under the National Cybersecurity Act.
Conduct cyclical reviews of continuity plans.
Provide training and awareness-raising in the area of information security and continuity by:
Advice on the organisation and implementation of continuity plans exercises.
Monitoring and updating the internal documentation of the information security management system and its continuity.
The service of outsourcing the NIS2 Plenipotentiary function is most often chosen by boards of directors of companies that want to:
Support for the security of networks and IT systemsSystematic risk managementReporting of incidentsSupport for continuity of operationsDeveloping staff competencies
The establishment of the specific function of an "author" depends on the needs of the organisation; whereas the NIS2 requires realistic risk management, accountability and supervision by the Management Board; whereas the NIS2 is a practical way of implementing the requirements.
The Ombudsman manages data security and risk comprehensively by planning, coordinating, documenting, preparing the Management Board for decision-making, keeping records and readiness.
We're mapping requirements so that we don't duplicate documents and processes: policies, procedures, risks, continuity and training, and we're putting it into a coherent management system.
Typically, the first results (audit + plan) are delivered within 4–7 weeks, and full implementation depends on scale and maturity – most often 8–16 weeks. These are indicative ranges: "unspecified"; we will refine them after the diagnosis.
The service package is tailored to the business needs of the organisation, taking into account, among other things, the real risks, the number of systems and suppliers and the classification of the entity.
Write or call, we will find a solution
