Clone of NIS2-Readiness Check

NIS2 Readiness Check
This self-assessment contains 30 questions helping you evaluate your NIS2 compliance and identifying areas where you may still need support.

You will be guided through various challenges and topics regarding NIS2, assessing your company’s maturity level by answering ‘yes’ or ‘no’ to a set of questions. Athereon GRC is not liable for the assessment nor the results of the readiness check.

Legal Framework & Applicability

Incorrect assessments can quickly lead to unpleasant surprises like fines, liability issues, and reputational damage. Make sure you stay informed.

Your benefit with Athereon GRC: automated compliance mapping. Use our standards mapping across different standard generations and frameworks to create resource-efficient synergies.
7. Do you know whether you are classified as an “essential entity” or “important entity”?*

YesNo
8. Did you evaluate which potential sanctions and liability risks apply to you in the event of NIS2 violations?*

YesNo
9. Are you familiar with applicable overlaps with other regulations, such as ISO 27001, GDPR, DORA, or critical infrastructure requirements?*

YesNo

Risk Management & Supply Chain

NIS2 explicitly requires supply chain risk management, which often poses the biggest gateway for threats.

Your benefit with Athereon GRC: Take advantage of our automated risk management with real-time risk assessment and notification management throughout the entire lifecycle of third-party risks.
10. Is there a documented procedure for risk assessment (IT, organization, and suppliers)?*

YesNo
11. Are new suppliers assessed for cyber and compliance risks before signing a contract?*

YesNo
12. Do you regularly review your existing suppliers for compliance with relevant standards?*

YesNo
13. Have you implemented vulnerability scans or penetration tests?*

YesNo

Training & Security Culture

NIS2 emphasizes employees being both the weakest and the strongest link in the security chain.

Your benefit with Athereon GRC: scheduled training modules, awareness initiatives, and progress tracking within the platform.
25. Are employees regularly trained on cybersecurity and compliance?*

YesNo
26. Do employees know how to report an incident?*

YesNo
27. Are managers also regularly trained and held accountable?*

YesNo

Documentation & Evidence Management

Authorities expect complete, up-to-date, and audit-proof documentation, which is often the biggest challenge.

Your benefit with Athereon GRC: unified compliance repository with audit-proof storage and reporting capabilities.
28. Can you provide audit-proof evidence of measures, processes, and incidents?*

YesNo
29. Is there a centralized, version-controlled documentation repository rather than unrelated files?*

YesNo
30. Is documentation regularly updated and maintained?*

YesNo

Your NIS2 Readiness
Your NIS2 Readiness in %
You are still at the beginning of your NIS2 journey.

We are happy to advise you on how to reach NIS2 compliance with minimal effort and maximum effectiveness.

Schedule a free initial consultation with us.
You are well on your way toward effective NIS2 readiness.

We are happy to support you with the final touches.

Schedule a free initial consultation with us.
Congratulations! You are well prepared for NIS2.

Would you like to leverage your optimization potential? We are happy to assist you with the final touches.

Schedule a free initial consultation with us.
Should be Empty:

NIS2 Readiness Check