2 min read

Security Spotlight: Your compliance checklist

Posted by Nadine Hoogerwerf on 1st November 2024

""

The second in our Security Spotlight webinar series shares insights from data governance leaders on the latest infosecurity news and regulations, including NIS2 and DORA. 

GDPR, CRA, NIS2, DORA - we are in a period of regulatory overload and it can feel quite overwhelming. However, these legislative instruments are not designed to make life difficult for organisations, but to standardise cybersecurity and risk management to create a more secure landscape for all.  

We invited Steve Purser, former Head of Core Operations at the EU Agency for Cybersecurity ENISA, and Nadine Hoogerwerf, CISO at Zivver, to share their expertise and opinions on how these two new regulations will impact operations for organizations and predictions for the future.

“Compliance isn’t really the goal here. Instilling a culture of risk management is.”  - Steve Purser, former Head of Core Operations at the EU Agency for Cybersecurity

 

Both NIS2 and DORA emphasize the importance of risk management as a cultural and policy-driven goal rather than just compliance for its own sake. According to Nadine, the legislation is a positive step, because too many businesses still treat their own security initiatives an afterthought or box-checking exercise – the legislation creates an impetus for better data governance and the formation of better organizational habits: 

“Most CISOs I’ve spoken with are welcoming DORA and NIS2. They know that security is no longer optional, and some might even think the legislation doesn’t go far enough. It strengthens their role and makes security a team endeavor rather than something they have to justify.” Nadine Hoogerwerf, CISO at Zivver

From reframing responsibility to reviewing the supply chain, hear Steve and Nadine unpack the implications of NIS2, DORA, and the future landscape of information security in our latest webinar. 

You will learn: 

  • The evolving roles and responsibilities of CISOs and information security leaders 
  • How to establish an organization-wide culture of resilience  
  • Why investment in intuitive tech will stand organizations in good stead for future regulations including the AI Act and Cyber Resilience Act 
  • How NIS2 and DORA reframe responsibilities from the top down  

Watch now.

 
Nadine Hoogerwerf avatar

Nadine Hoogerwerf

CISO

Published: 1st November 2024

Subscribe to our newsletter
Share this

Enjoy this article? Share the knowledge

Previous

Back to all

Stay informed with Zivver

Subscribe to get more email security tips straight to your inbox.