NIS2 supplier guides

NIS2 policy and email templates

Templates for policy, MFA remediation and incident notification.

NIS2 minimum controls checklist

• Incident procedure - Severities, contacts, customer escalation timelines, evidence retention and crisis channel.
• Inventory and patching - Critical asset list, CVE tracking, remediation priority and accepted exceptions.
• Supplier control - Listed subcontractors, minimum clauses, data location and security contacts.
• Evidence pack - Shared folder with policies, test logs, attestations, screenshots and owners.

Policy and email templates

Trigger: suspected impact on customer data or service. Actions: isolate, log, qualify severity, notify the customer contact, preserve evidence and communicate updates until closure.

Start the questionnaire