NIS2 Quality Mark

Do your customers ask you how you have taken care of cybersecurity and digital resilience? As a supplier of NIS2 companies, you can demonstrate this in an accessible way with the NIS2 Quality Mark. Find out how you can obtain the certification.
Discover more
Header imageArrow
Pragmatic quality mark

Pragmatic and accessible

The NIS2 Quality Mark was set up as a practical and accessible standard specifically for suppliers of NIS2 organizations. Are your clients subject to NIS2? Then you can expect questions to demonstrate your cybersecurity and digital resilience. With the NIS2 Quality Mark this is possible in an accessible way
The process

Certification in five steps

1. Risk assessment

The starting point of every cybersecurity and resilience initiative is a risk assessment. What are the most important risks to your organization?

2. Implementing control measures

Based on your risk profile, you implement control measures to increase your cyber resilience. These are based on the chosen version of the NIS2 Quality Mark: Basic, Substantial or High

3. Internal pre-audit

With an internal pre-audit you prepare yourself for the external audit. If the control measures are correctly implemented you are ready for the external audit.

4. External audit

You contract an approved external auditor. The auditor will assess your security measures to determine whether they meet the chosen NIS2 Quality mark level.

5. Certificaction

If the external audit is successfully completed, the NIS2 Quality Mark certificate is awarded. The certificate is valid for three years.
External audit

The audit process

What is the process for an external audit?
The auditor will first review the organization's policies, processes and security measures to get an initial picture of compliance with the NIS2 Quality Mark standards.
Depending on the type of organization and scope of the audit, the assessment will be performed. This can be done on-site, remotely or in a combination.
Auditors will focus on the areas with most cyber risks, assessing the technical measures, procedures (e.g. awareness training), and compliance (such as incident reporting).
A report with findings is shared, including improvement points and recommendations. If the audit is successfully completed, the NIS2 Quality Mark will be awarded.

Request a quote

We expect to be able to perform external NIS2 Quality Mark audits later in 2025. More info will follow soon!
info@digitalsecurityinstituut.nl
HSD Campus
Wilhelmina van Pruisenweg 104
‍2595 AN  Den Haag
Bedankt, uw bericht is ontvangen!
Oeps, er is iets mis gegaan. Probeer het a.u.b. nog een keer.