Trusted by
We solve tasks such as:
- GAP-analysis
- Risk analysis
- Incident procedures
- Action plans
Interim NIS2 specialists
NIS2 can be difficult to navigate. The regulation is technical, the requirements are not always straightforward, and working through them properly takes time and focus that a lot of teams simply don’t have to spare. Even companies with solid in-house expertise find that NIS2 competes with everything else on the agenda.
There is also the question of scope. Some companies are not yet certain whether NIS2 applies to them directly. Others are aware that their customers, who are covered by the directive, are starting to ask for documented evidence of supplier security practices, regardless of whether the supplier itself falls under the regulation.
Either way, leaving compliance incomplete carries real risk: Regulatory fines, loss of customers who are required to assess their supply chain, and in cases of gross negligence, personal liability for management.
Receive free GAP analysis
Before committing to any compliance work, it helps to know exactly what you are
dealing with. That is why we offer a free GAP analysis for companies based in Denmark.
Anders Damgren, our Head of Safety, CE-marking & Documentation, visits your site and
runs a three-hour workshop. Working through your current practices, systems, and
documentation, he maps out where you meet the NIS2 requirements — and where the gaps
are. You leave the session with a clear picture of your actual compliance status and a
concrete starting point for the work ahead.
There is no obligation to engage PS Engineering further. The analysis is yours to keep.
Only available for Denmark based organisations.
We solve tasks such as:
GAP analysis
We review your current practices, systems, and documentation and map out where you meet the NIS2 requirements, and where the gaps are.
Incident procedures:
We develop clear procedures for how your organisation detects, manages, and reports security incidents, aligned with the NIS2’s requirements.
Risk analysis
We identify threats and vulnerabilities across your information and operational systems and assess which risks require action, and what should be addressed first.
Action plans
We translate the findings from the analysis work into concrete measures with clear ownership and deadlines.
We handle the compliance work, you stay operational
This is where PS Engineering’s NIS2 specialists can assist your team. Our experts in network and information security work alongside you to build the documentation, processes, and awareness your organisation needs.
We conduct thorough risk assessments of your information and operational systems and develop incident-response procedures and reporting plans aligned with the requirements of the relevant authorities. You also get hands-on support preparing the compliance documentation that demonstrates your security posture to customers and auditors — process descriptions, risk registers, and evidence of controls.
We can also support your management and employees with targeted training in NIS2 and information security. Where relevant, we assist with work towards ISO 27001, a recognised framework that strengthens your security culture and supports ongoing compliance.
Plant supervision 2025 in numbers
FLEXIBLE SUPPORT WITHOUT FULL-TIME OVERHEAD
PS Engineering ensures the right specialist is available when and where you need them, fully prepared to get your compliance work done. It is a flexible solution that gives you immediate access to the expertise you need, without the overhead of a permanent hire or the cost of an open-ended engagement.
Most companies don’t require a full-time information security manager year-round. NIS2 compliance is a defined scope of work: Assess, document, train, and maintain. Our interim model lets you pay for exactly the support you need, when you need it — and when the work is complete, your team carries it forward.
FAQ - Frequently asked questions
NIS2 is the EU directive for cybersecurity in critical sectors. In Denmark, the NIS2 Act entered into force on 1 July 2025. The law is in effect now, and supervision is underway.
Yes, if you are both in a regulated sector (Annex 1 or 2) and have at least 50 employees or more than EUR 10 million in turnover and balance sheet. You can also be affected indirectly through cybersecurity requirements from customers in the supply chain.
Documented risk assessment, concrete security measures, supply chain security, contingency planning and management accountability. In addition: registration on virk.dk and incident reporting within 24 hours (preliminary) and 72 hours (detailed).
Stricter supervision and fines of up to EUR 10 million for the most critical entities. Responsibility lies with top management, who can be held personally accountable.
We deliver the GAP analysis, procedures, action plans and all the basic documentation that needs to be in place to support the business and handle incidents. This includes risk assessment, ISMS, contingency plans and, if needed, assistance with ISO 27001 certification.
