Governance, Compliance & Regulatory
Achieving and retaining compliance is more than checking boxes and preparing for an audit. When integrated into an organisation’s security program, compliance initiatives will raise the organisation’s overall security posture.
Many organisations find it difficult to work with compliance and regulatory requirements. The standards often serve as high-level guidelines, while being vague when it comes to how an organisation should actually implement necessary controls, systems and procedures. This is where our team of experienced, trusted compliance advisors can assist.
NIS2 expands on the original NIS Directive by addressing its limitations and broadening its reach to improve security standards, reporting duties, and crisis management capabilities. For “Essential entities” and “Important entities" operating within the EU, compliance with the NIS2 Directive by October 17th, 2024 is essential to protect their systems, reduce cyber risks, and maintain resilience.
Our experts
Our multidisciplinary team of compliance specialists help organisations design, implement and maintain secure and robust IT infrastructures, while helping you find the best way for your organisation to become and stay compliant over time.
mnemonic’s years of experience in implementing Information Security Management Systems (ISMS) will ensure you meet your compliance goals while also improving your security posture and protecting your business.
Our areas of specialisation include but are not limited to:
Regulations:
- NIS2
- AI - Act
- DORA
- Security Act (Sikkerhetsloven)
- General Data Protection Regulation (GDPR)
- eIDAS (electronic IDentification, Authentication and trust Services)
Frameworks and standards:
- CSA Cloud Security Matrix
- ISO/IEC 27001
- NIST Cyber Security Framework and other publications as 800-53
- CIS Critical Security Controls (CSC) for Effective Cyber Defense
- Cyber Maturity Model Certification (CMMC)
- Digital Security Assessments for OT
Get in touch
