Achieve end-to-end NIS2 audit-readiness in just 12 weeks.Read more about our NIS2 Compliance →
NIS2 SaaS Readiness Check

5-minute compliance assessment

Part 1:The Scope (Are you affected?)

The “Essential” Criteria
Does your SaaS company have more than 50 employees OR an annual turnover exceeding €10 million?(Required)
Even if you are smaller: Do you provide software as a service to enterprise clients in critical sectors (Banking, Energy, Healthcare, Transport, Public Administration)?(Required)

PART 2: The CEO Liability Check

These questions determine personal liability.
Has your management board formally approved and signed off on a cybersecurity risk management methodology?(Required)
Do you have a current Risk Heat Map that identifies specific threats to your CI/CD pipeline and cloud infrastructure?"(Required)

PART 3: Operational Reality (The Killer Questions)

How your systems perform under pressure?
If a breach occurs at 3:00 AM on a Sunday, how long until a qualified engineer actively responds?(Required)
Have you legally agreed on security requirements with your direct sub-processors (hosting, dev-tools, 3rd party APIs)?(Required)
Can you restore your entire SaaS environment from an immutable backup within a defined RTO after a ransomware attack?(Required)

PART 4: The 10 Mandates (Quick Scan)

Check all that apply!
Which of these mandatory Article 21 measures are fully implemented and documented?