NIS2 GAP analysis

  • Home
  • NIS2 GAP analysis

NIS2 GAP analysis

Unsure about the extent of the necessary measures that the new Czech Cybersecurity Act (Zákon o kybernetické bezpečnosti) brings? Would you like to prepare a budget for their implementation? This analysis will help you.

extract from nis2 analysis

By implementing the suggested measures, you’ll increase your company’s resilience against cyber threats and reduce the risks and potential costs associated with a potential cyber attack. This service starts at 90 000 CZK without VAT.

How is the analysis conducted?

We’ll start within one month from the time we sign our contract. The duration of the analysis depends on the size of your organization and your current security posture but a typical estimate is 4 weeks.

  • Upon requesting documentation for your systems, we’ll ask you to fill in a questionnaire to asses their security. We’ll then process the documentation and your answers and devise next steps.
  • After a week, we’ll visit your place of work, present the information we’ve gathered about your current security posture, and meet with key employees. At the meetings we’ll dive into the details and requirements as defined by NIS2 and the current draft of the Czech Cybersecurity Act.
  • Typically within two weeks, we’ll provide you with a final report that will thoroughly guide you through each of the steps necessary to fulfill requirements defined by NIS2.
  • We’ll present our results.

Next steps

The act should enter into force in mid-2025. Within 90 days, companies will have register with NÚKIB and have the following year to implement the measures.

Important resources

Current status of the discussion of the act in the Chamber of Deputies

Current draft of the act (28.8.2024)

NIS2 portal from NÚKIB

NÚKIB – categorization of organizations

© Sec4good, s.r.o., registered in the commercial register at the municipal court in Prague, section C, insert 378876.