NIS2 compliance without the panic
The EU cybersecurity directive now covers thousands of Latvian companies. We audit the gap, write the policies and set up the technical controls, so you pass checks instead of collecting fines.
What you get out of it
Clear gap picture
A structured audit shows exactly where you stand against NIS2 requirements and what to fix first.
Paperwork done
Risk register, security policies and incident procedures written for your company, not copied from a template.
Real technical controls
Backups, access control, network segmentation and monitoring implemented on your actual infrastructure.
Ongoing readiness
Re-checks after fixes and support during supervisory reviews, so compliance does not decay.
What the service includes
- Gap assessment against NIS2 requirements
- Risk register and security policy set
- Technical controls plan for your infrastructure
- Incident response playbook and reporting flow
- Management report in plain language
- Re-assessment after the fixes are in place
Scope defines the price: request a quote and we will size the project with you.
How it works
- 1
Scoping call
We map your services, systems and whether NIS2 treats you as essential or important.
- 2
Audit and report
We assess people, processes and technology, then hand over a prioritized gap report.
- 3
Fix and comply
We implement the controls with your team and prepare you for supervisory checks.
NIS2 questions
Does NIS2 apply to my company?
NIS2 covers essential and important entities in sectors like energy, transport, health, digital infrastructure, manufacturing and public services, including many mid-size companies. A half-hour scoping call with our engineers in Riga answers it definitively for your case.
What is the NIS2 directive in simple terms?
NIS2 is the EU cybersecurity directive that obliges companies in critical sectors to manage cyber risks, protect their infrastructure and report serious incidents. In Latvia it is implemented through the National Cybersecurity Law, so compliance is a legal duty, not a recommendation. Our service covers the audit, the paperwork and the technical controls in one project.
What are the main NIS2 requirements?
Risk management, security policies, incident response and reporting, business continuity with backups, supply chain security, access control and management accountability. Our gap audit checks every one of these areas and hands you a prioritized fix list within 2 to 4 weeks.
How long does a NIS2 gap audit take?
A typical gap assessment takes 2 to 4 weeks depending on the size of your infrastructure. Fixes are planned separately after the report, and we re-assess once they are in place.
What do we get at the end of the project?
A gap report with priorities, a written policy set, an incident response playbook and implemented technical controls, plus a re-assessment once the fixes are done. Management also gets a plain-language report it can show to the board or a supervisor.
How much does NIS2 compliance cost?
The price depends on scope: how many systems and locations you run and how much is already in place. Request a quote and we will size the project with you after a half-hour scoping call.
What happens if we ignore NIS2?
Supervisory authorities can order audits, issue binding instructions and impose significant fines, and company management can be held personally accountable. A 2 to 4 week gap audit is the cheap way to find out how exposed you actually are.
Can you also run our security after the project?
Yes. Managed Fortinet firewalls and 24/7 monitoring from our team in Riga cover the operational side of NIS2 once you are compliant, so readiness does not decay after the audit.