The NIS2 directive is European legislation imposing stricter cybersecurity requirements on essential and important organisations, and indirectly on their suppliers.

Does my business fall under NIS2?

That depends on your sector and size. We help you determine this with a free quick scan. Suppliers of NIS2-obligated organisations can also be indirectly affected.

What are the fines for non-compliance?

Essential organisations face fines up to 10 million euros or 2% of global turnover. Important organisations up to 7 million euros or 1.4% of turnover.

Does ISO 27001 cover NIS2 requirements?

Largely yes. ISO 27001 provides an excellent framework covering most NIS2 requirements. We identify any gaps through a gap analysis.

How long does it take to become NIS2 compliant?

With our ISO 27001 foundation as a starting point, you can be compliant within weeks. Without an existing framework, it typically takes 2-6 months.

Should board members be concerned?

Yes. Under NIS2, board members can be held personally liable for negligence in cybersecurity.

What does NIS2 compliance cost?

That varies per organisation. Contact us for a free quick scan and quote. Call 085 013 4500.

Do you help with the reporting obligation?

Yes. NIS2 requires security incidents to be reported within 24 hours. Our 24/7 monitoring and incident response ensure you comply.

NIS2 Directive for SMEs — Does it apply to you?

For SMEs wanting to know if NIS2 affects them — and if so, what to do. Take our free 3-question quickscan below (60 seconds, no email needed) and see immediately which regime applies. ISO 27001 and NEN 7510 as foundation for both your own NIS2 journey and that of your vital-sector customers.

Book consultation Request a quote

NIS2 is now in force in the Netherlands

The Dutch implementation of NIS2 (WBNI — Wet Beveiliging Netwerk- en Informatiesystemen) has been in force since 17 October 2024. Regulator NCSC/RDI is actively monitoring compliance. Is your organisation ready?

Book a free quickcall

2000+

Cloud workspaces

6000+

Microsoft 365 accounts

20+

Years of experience

ISO 27001

certified

NEN 7510

healthcare information security

Microsoft

Solutions Partner

FD Gazelle

2022 / 2024 / 2025

NIS2 Directive for SMEs

What is the NIS2 directive?

The NIS2 directive (Network and Information Security Directive 2) is European legislation imposing stricter cybersecurity requirements on organisations. It is the successor to the original NIS directive and has a much broader scope. NIS2 requires organisations to take appropriate technical and organisational measures for the security of their network and information systems. This includes risk management, incident response, business continuity, supply chain security and reporting obligations. Non-compliance carries significant fines. Board members can be held personally liable. Read our [insight on the NIS2 directive](/en/inzichten/nis2-richtlijn-valt-jouw-bedrijf-eronder) for a detailed analysis.

ISO 27001 & NEN 7510 certified

Gap analysis and implementation support

24/7 monitoring and incident response

Supply chain security advice

Personal guidance from specialists

Does your business fall under NIS2?

NIS2 applies to two categories of organisations: Essential — Energy, transport, healthcare, drinking water, digital infrastructure, banking, government and space. Important — Postal and courier services, waste management, chemicals, food production, manufacturing, digital service providers and research organisations. Even if you don't fall directly under NIS2, you may be indirectly affected. Organisations that do fall under NIS2 must impose requirements on their suppliers. Do you work for a hospital, government institution or energy company? Then you must also demonstrate that your cybersecurity is in order.

Gap analysis

Assessment of your current situation against NIS2 requirements.

ISO 27001 foundation

Our certification already covers most NIS2 requirements.

Policy support

Help with drafting security policies, procedures and documentation.

Incident response

24/7 incident response in line with NIS2 reporting obligations.

Supply chain security

Advice and measures for securing your supply chain.

How Virtual Computing helps

Virtual Computing is ISO 27001 and NEN 7510 certified. These certifications already cover most NIS2 requirements. Our approach: Gap analysis — We map where your organisation stands relative to NIS2 requirements and identify any gaps. Implementation — We help you implement missing measures: from technical security solutions to policy documents and procedures. Continuous monitoring — After implementation, we monitor your environment 24/7 and ensure you remain compliant. Also see our [cybersecurity](/en/cybersecurity) services and [cloud security](/en/cloud-security) solutions for a complete picture of how we protect your organisation.

NIS2 Quickscan

Does NIS2 apply to your organisation?

Three questions, a direct indication. No account, no email, no salesperson.

Question 1 of 360 seconds

Which sector does your organisation operate in?

Pick the closest match.

Contact

Arrange it the way you prefer

Prefer a quote with numbers first, a direct conversation, or to get started right away? Pick the route that suits you — no strings attached.

085 013 4500 Prefer WhatsApp? Send us a message

We'll call you back

An experienced IT specialist on the line within 1 working day — often the same day.

Customer stories

What our customers

4.9/5 on Google · 47 reviews

We've trusted Virtual Computing with our IT for over 18 years. From a handful of workstations we've grown to 250+ users spread across Europe. Online Workplace, Microsoft 365, Windows 365 — it scales effortlessly. Fantastic service and excellent knowledge.

Matija Jolic

Aushi BV — 250 workspaces across Europe

01/04

Good to know

Frequently asked questions

Ready to get started?

Book a free consultation about the best ICT solution for your organisation.

Book consultation Request a quote

or have us call you 085 013 4500

Gerelateerde inzichten

Meer weten over dit onderwerp?

Security3 April 2026

NIS2 Directive: does it apply and what to arrange?

The NIS2 directive sets stricter cybersecurity requirements. We explain who it applies to, what you need to arrange and how to prepare your organisation.

Mohammad Moghtader

Security1 April 2026

Cybersecurity for SMBs: the essentials you need

Cybercrime increasingly targets small and medium-sized businesses. What baseline measures do you need and how do you protect your company without a massive budget? A practical guide.

Robin Damen