NIS2 raises the bar for cybersecurity governance, risk management, and incident handling across essential and important entities. This training shows how to translate NIS2 obligations into a practical implementation programme — from scope determination and governance to measurable controls, evidence, and audit-ready documentation.
A structured 4–5 day programme designed for implementation teams and decision-makers. Participants work through a continuous mini-project and build a coherent set of outputs that can be reused in real organisations.
The course focuses on what organisations struggle with in practice: determining NIS2 scope, setting up governance and accountability, selecting and implementing measures, building evidence, and preparing for supervisory expectations — including incident reporting and supply-chain requirements.
Participants practise how supervisory bodies, auditors, and customers assess NIS2 readiness — and how to defend decisions with traceable risk logic, measurable controls, and consistent documentation.
Christian supports organisations from cybersecurity programme design and governance down to implementation of measures across critical infrastructure and OT environments. He leads NIS2 implementation engagements as an external CISO and focuses on building sustainable governance, documentation, and remediation execution.
Participants leave with a reusable implementation blueprint and practical artefacts that can be directly applied in NIS2 programmes — across governance, controls, incident handling, and evidence.
- Implementation templates: scope checklist, governance model, gap analysis format, roadmap tracker
- Controls mapping: practical mapping of NIS2 obligations to organisational measures and technical controls
- Incident readiness: reporting workflow, roles, timelines, and evidence expectations
- Audit-ready structure: documentation package layout that supports internal review and supervisory assessment
Designed for organisations that must implement NIS2 in a structured, defendable way — with clear ownership, measurable progress, and sustainable evidence.
- Management & governance: CISOs, IT/OT leadership, compliance, risk owners, executive stakeholders
- Implementation teams: security engineers, architects, operations, GRC and policy owners
- Assurance: internal auditors, external assessors, programme managers, consultants
- Sectors: essential and important entities, critical infrastructure, industrial and OT-heavy organisations
Choose a scheduled delivery below, or request a private cohort for your organisation (onsite or virtual).
Live, instructor-led virtual classroom covering NIS2 requirements and implementation — from scope and governance to controls, incident readiness, and audit-ready evidence.
- Hands-on templates: scope, governance, gap analysis, roadmap, evidence structure
- Implementation-first method for measurable remediation and sustainable compliance
- Incident reporting workflow, supplier controls, and supervisory review readiness
If your preferred date is not listed yet, contact us to reserve a slot for your team.
Delivered onsite or as a private virtual cohort, tailored to your organisation’s scope, sector, and implementation maturity — ideal for aligning leadership, governance, and delivery teams on one plan.
- Organisation-specific scoping, governance model, and remediation roadmap
- Controls mapping to your existing policy house and technical landscape
- Optional focus: incident reporting drills, supplier requirements, audit readiness
Tell us your sector and current status, and we will propose a tailored agenda.