Internal training
NIS2: what Boards need to know
The training program explains the responsibilities of Executive Boards under NIS2, key risks, and effective methods to protect against cyber threats. You will gain knowledge that enables informed decision-making and effective collaboration with IT teams.
About the training
NIS2 in Practice: Responsibilities and Risks for Executive Boards
The NIS2 Directive requires Executive Boards to undergo annual cybersecurity training. This is not only a legal obligation but also a crucial element in protecting organizations from increasing threats. The training program provides practical knowledge and tools to effectively manage risks, avoid penalties, and comply with regulatory requirements—taking into account the responsibilities of Board members.
Gain the expertise that will enable you to make informed decisions and collaborate efficiently with IT teams.
Training objective
-
Understand the requirements of the NIS2 Directive and their impact on the organization.
-
Comprehend the cybersecurity responsibilities of the Executive Board.
-
Learn practical risk management and compliance with NIS2.
-
Discover the sanctions, penalties, and consequences of non-compliance.
-
Receive a certificate of completion, mandatory for Executive Boards under NIS2.
Target audience
The training is designed for Executive Board members and management staff of organizations subject to NIS2 regulations. It is especially recommended for those responsible for compliance, risk management, and cybersecurity. Participants will gain practical knowledge essential for adapting their organization to the new requirements.
The training concludes with a certificate that serves as the required documentation of participation in accordance with NIS2 regulations.
Training language
Training is conducted in Polish.
There is an option to organize the training in English.
Training methodology
The training is conducted through multimedia presentations and interactive discussions with participants, ensuring maximum engagement and knowledge retention.
Trainer
MONIKA SURMA
Graduate of National Security with a specialization in Crisis Management and Cybersecurity at Adam Mickiewicz University in Poznań. Lead auditor for information security management systems and business continuity management. Internal auditor for quality, environmental, and occupational health and safety management systems. Trainer in ISMS (Information Security Management System), risk management, cybersecurity, NIS2, and TISAX. She has completed dozens of projects for the public and private sectors, including conducting audits and implementing KRI, ISO 27001, UKSC, NIS2, and TISAX.
The training is dedicated exclusively to your organization – this approach ensures comfort and freedom to thoroughly discuss specific topics and situations relevant to your company. We understand that every business is unique; therefore, to effectively translate the acquired knowledge to your organization’s context, we tailor the presented examples to your specific needs and business situation.
Training program
Day 1
9.00-13.00
-
• Welcome and introduction
• Introduction to the NIS2 Directive
• what is the NIS2 Directive
• history, evolution and objectives of the NIS Directive
• reasons for introducing NIS2 and key differences from NIS 1
• sectors covered by the directive and qualification criteria
• scope of application – essential and important entities
• Importance of the NIS2 Directive for the Company
• consequences for the organization in case of non-compliance
• new obligations for company boards
• Key NIS2 requirements
• board responsibility for cybersecurity risk management
• incident reporting requirements
• ensuring appropriate security measures
• Incident reporting
• criteria and deadlines for reporting incidents
• procedures and board accountability for reporting
• Board’s role in ensuring compliance with the NIS2 Directive
• how the board can influence cybersecurity culture within the organization
• integrating cybersecurity with overall business strategy
• Board accountability
• board’s roles and responsibilities under NIS2
• legal and financial consequences of non-compliance
• Monitoring compliance and accountability
• methods for monitoring NIS2 compliance
• board responsibility for implementing and maintaining compliance
• Practical aspects of NIS2 implementation
• planning and implementation schedule
• steps for effective NIS2 implementation within the company
• board’s role in the implementation process
• Analysis of real-life cybersecurity breaches
• overview of known incidents and their impact on organizations
• analysis of board responses and lessons learned
• Examples of breaches and their consequences
• real-life case studies
• discussion of legal and financial implications of breaches
• analysis of consequences for the board and the company
• discussion on potential outcomes for the board and organization in case of violations
How does it work?
Step 1
REGISTRATION
In the first step, please fill out the registration form to express your interest in organizing a dedicated training session for your company.
Step 2
DATE
We will arrange the date and location of the training – adapting to your availability and individual expectations.
Step 3
PRICE
We will present you with the commercial terms for organizing the training based on the agreed parameters and number of participants.
Step 4
TRAINING
We will deliver the dedicated training according to the agreed terms.
Request a quote for an internal training
Organizers
