KRITIS Umbrella Act and NIS-2 Directive Companies

The KRITIS Umbrella Act and the NIS-2 Directive – Their Impact on Businesses

What do the KRITIS Umbrella Act and the NIS-2 Directive mean for affected companies?

Germany is soon set to implement the KRITIS Umbrella Act – a measure aimed at strengthening the resilience of critical infrastructures. With the implementation of the European NIS-2 Directive, additional requirements are introduced, particularly in the areas of Business Continuity Management (BCM), crisis management, and physical security. Operators of critical infrastructure and many other companies are therefore facing new challenges and obligations that must be fulfilled to enhance resilience.

Under NIS-2, additional requirements apply to entities in sectors such as healthcare, digital services, finance and insurance, IT, public administration, and more. An overview of affected entities and their thresholds can be found on OpenKRITIS at the following link:

Entities under NIS 2 – OpenKRITIS

The KRITIS Umbrella Act also applies to operators of critical infrastructure in sectors such as energy, transport, and traffic. The definitions of these facilities and their threshold values can also be found on the OpenKRITIS platform:

KRITIS Umbrella Act: Resilience of Critical Infrastructure

The KRITIS Umbrella Act was created to protect critical infrastructure from growing threats such as sabotage, espionage, natural disasters, or supply disruptions. The NIS-2 Directive complements these protective measures, placing special emphasis on business continuity management, crisis management, and physical security.

Our solutions are based on a risk-based and holistic approach. Comply with legal requirements through our proven partnership and sustainably strengthen the safety and resilience of your company.

Quick Check: KRITIS Umbrella Act

Get our assessment for your company in just a few clicks (please note the check is in German language)
QUICK CHECK

FREE GUIDE

DOWNLOAD

FREE GUIDE

DOWNLOAD

Our Services Related to the KRITIS Umbrella Act and the NIS-2 Directive for Companies

We understand the complexity and significance of these legal requirements for your business. Our goal is to prepare you in the best possible way for the new requirements of the KRITIS Umbrella Act and the NIS-2 Directive, and to holistically strengthen your resilience.

We support you with the following services:

  1. Preparation for the KRITIS Umbrella Act and NIS-2

  • Analysis of the specific requirements relevant to your company
  • Identification of affected critical infrastructure (KRITIS) and entities (NIS-2) based on official thresholds

  1. Resilience Measures According to the KRITIS Umbrella Act / NIS-2

  • Consulting on mandatory measures under both regulatory frameworks
  • Development of a customized strategy to meet legal obligations

  1. Training and Awareness

  • Employee training as part of the KRITIS Umbrella Act and the NIS-2 Directive
  • Raising awareness among your management regarding risk assessment and effective risk management practices

  1. Security Concepts and Plans

  • Conducting risk analyses and assessments
  • Development of physical security concepts
  • Creation of resilience plans and structured measures to strengthen business continuity
  • Implementation of crisis and risk management plans (Business Continuity Management)

You are currently viewing a placeholder content from YouTube. To access the actual content, click the button below. Please note that doing so will share data with third-party providers.

More Information
Unblock content Accept required service and unblock content
PROJECT REQUEST

projects in this field

OPTIMIERUNG BUSINESS CONTINUITY MANAGEMENT

See Our Project

Erstellung von Sicherheits- und Notfallprozessen

See Our Project

BCM UND KRISENMANAGEMENT HANDBÜCHER

See Our Project
MORE PROJECTS