The new NIS2 directive

The upcoming Network and Information Security (NIS2) directive applies to more companies than the current NIS. The NIS2 directive focuses on all sectors already covered by the first NIS directive, as well as some new sectors. This means more public and private organizations will be subject to it.

We test, inspect, certify and train your organization according to NIS2 standards, helping you demonstrably reduce cybersecurity risks for your network and information systems.

NIS2, Europese regelgeving cybersecurity

In the Netherlands, the current European NIS directive is known as the Wbni (Wet beveiliging netwerk- en informatiesystemen or Network and Information Systems Security Act). The second European NIS directive will also be implemented in Dutch law, becoming Wbni2. While the precise sectors for Wbni2 are still unknown, it is certain that more sectors will be included. Want to know what’s coming? Discover the current information in our webinar

✓ One-stop-shop: services for OT, IT, and IoT under one roof

✓ Independent, objective assessments

✓ Expertise in laws and regulations

✓ Proven quality in testing, inspection, certification and training

✓ Forward-looking vision on cybersecurity

Top 3 NIS2 services

Our experts have deep knowledge and experience in specific fields. Questions, dilemmas, or just curious? We’re happy to share our insights.

Schedule an appointment

The latest news about cybersecurity

View all the news

26 May 2025

Kiwa achieves official accreditation for EN 18031 – supporting manufacturers towards EU product cybersecurity compliance

Kiwa is now officially accredited for EN 18031 parts 1, 2 and 3 – the newly introduced European cybersecurity standards for products. This accreditation positions Kiwa among the first bodies in Europe to support manufacturers in meeting the requirements of the upcoming EU Cybersecurity Regulation, which becomes mandatory as of 1 August 2025.

9 May 2025

Cyber Resilience Act: Time to take action

The Cyber Resilience Act (CRA) is the first European law to introduce mandatory cybersecurity requirements for all digital products entering the EU internal market. A national consultation was recently concluded in the Netherlands to determine how this law should be implemented Dutch legislation. In the meantime, manufacturers, importers and distributors of products covered by the CRA can already start preparing for what’s to come.

8 April 2025

NEN 7510 for healthcare sector information security updated

The NEN 7510 standard for information security in the healthcare sector has been revised. The new NEN 7510-1:2024 was published on 16 December 2024 and replaces the previous version, NEN 7510:2017+A1:2020. The old version of the standard can still be used for certification under accreditation until 20 February 2027.

25 February 2025

ISO 27001 and ISO 42001: A perfect match for information security and AI management

To implement AI safely and responsibly, international standards such as ISO 27001 and ISO 42001 play a crucial role. While ISO 27001 focuses on data protection, an AI management system (AIMS) under ISO 42001 is designed to manage and optimize the use of AI within an organization. By combining ISO 27001 and ISO 42001, businesses can develop a stronger and more proactive approach to information security.