NIS2 (Network and Information Systems Directive) Foundation Course

A two-day course delivered online or in a classroom covering the new NIS2 requirements effective from October 2024.

This course covers the requirements of the Directive, including the required controls, management of risks, management's responsibilities, incident reporting and supervision. It puts the NIS2 Directive's requirements into the context of a management system against ISO/IEC 27001 for information security (ISMS) and ISO 22301 for business continuity (BCMS), emphasizing the responsibility of top management. The course material also includes relevant best practices for the selection of controls (ISO 27002 and NIST CSF), management of risk (ISO 27005 and IEC 31010) and business impact analysis (ISO 22317).
The course ends with an examination. The exam is taken online directly after the course via DNV’s Learning Management System (LMS) without aids and lasts one hour. It consists of 40 multiple-choice questions. A pass mark is achieved with at least 28/40 (70%) correct answers. If the exam is passed, the NIS2 Foundation course certificate is obtained. The course includes a free re-sit exam within 12 months of the first exam.

Objective:

After successful completion of the course, you will be able to contribute effectively to the organization’s alignment with NIS2 Directive's requirements.

The course covers the requirements of the Directive, including the required controls, management of risks, management's responsibilities, incident reporting and supervision. Furthermore, the course strengthens your CV and expands your skillset, so you will be able to apply and take on roles within NIS2 compliance, cyber security and business continuity.

Most organizations require documentation of competencies for the roles that deal with IT, cyber and information security, and the NIS2 Foundation provides you with proof of skills based on best practices in the field.

After successful completion of the course, attendees will have gained an understanding of:

  • Basic knowledge of concepts and requirements in NIS2;
  • Understanding of the methods, processes, and techniques that your organization can use to meet the Directive's requirements;
  • Inspiration for how NIS2 is translated into activities in your organisation;
  • Insight into the construction of an ISMS and BCMS, which includes the security requirements of NIS2;
  • Skills to plan, implement, evaluate, and improve a management system that covers NIS2;
  • NIS2 Foundation certificate and the necessary prior knowledge to pass the NIS2 Foundation exam;
  • Competences to work with several complementary frameworks regarding security controls to protect critical and sensitive information.

Audience:

The course is aimed at anyone who wants to gain knowledge about the requirements of the NIS2 Directive. This includes:

  • Employees in an IT security or information security function;
  • Employees who work with security compliance or awareness training;
  • Those responsible for implementing processes and a management system for information security (ISMS) or business continuity (BCMS).

 

All our public courses can also be delivered in-house at your premises either as standard or tailored depending on the needs and requirements of your business.

To find out which training courses we offer in your country, click on "Find a local course", select your country and navigate to Information security and IT service management ; or Contact us if you are interested or want to know more on in-house courses.

This course covers the requirements of the Directive, including the required controls, management of risks, management's responsibilities, incident reporting and supervision. It puts the NIS2 Directive's requirements into the context of a management system against ISO/IEC 27001 for information security (ISMS) and ISO 22301 for business continuity (BCMS), emphasizing the responsibility of top management. The course material also includes relevant best practices for the selection of controls (ISO 27002 and NIST CSF), management of risk (ISO 27005 and IEC 31010) and business impact analysis (ISO 22317).
The course ends with an examination. The exam is taken online directly after the course via DNV’s Learning Management System (LMS) without aids and lasts one hour. It consists of 40 multiple-choice questions. A pass mark is achieved with at least 28/40 (70%) correct answers. If the exam is passed, the NIS2 Foundation course certificate is obtained. The course includes a free re-sit exam within 12 months of the first exam.

Objective:

After successful completion of the course, you will be able to contribute effectively to the organization’s alignment with NIS2 Directive's requirements.

The course covers the requirements of the Directive, including the required controls, management of risks, management's responsibilities, incident reporting and supervision. Furthermore, the course strengthens your CV and expands your skillset, so you will be able to apply and take on roles within NIS2 compliance, cyber security and business continuity.

Most organizations require documentation of competencies for the roles that deal with IT, cyber and information security, and the NIS2 Foundation provides you with proof of skills based on best practices in the field.

After successful completion of the course, attendees will have gained an understanding of:

  • Basic knowledge of concepts and requirements in NIS2;
  • Understanding of the methods, processes, and techniques that your organization can use to meet the Directive's requirements;
  • Inspiration for how NIS2 is translated into activities in your organisation;
  • Insight into the construction of an ISMS and BCMS, which includes the security requirements of NIS2;
  • Skills to plan, implement, evaluate, and improve a management system that covers NIS2;
  • NIS2 Foundation certificate and the necessary prior knowledge to pass the NIS2 Foundation exam;
  • Competences to work with several complementary frameworks regarding security controls to protect critical and sensitive information.

Audience:

The course is aimed at anyone who wants to gain knowledge about the requirements of the NIS2 Directive. This includes:

  • Employees in an IT security or information security function;
  • Employees who work with security compliance or awareness training;
  • Those responsible for implementing processes and a management system for information security (ISMS) or business continuity (BCMS).

 

All our public courses can also be delivered in-house at your premises either as standard or tailored depending on the needs and requirements of your business.

To find out which training courses we offer in your country, click on "Find a local course", select your country and navigate to Information security and IT service management ; or Contact us if you are interested or want to know more on in-house courses.

Management Systems Training

 

Training methodology and benefits

DNV’s training blends auditor expertise, data analysis and LMS (Learning Management System) accessibility.

 

APQP4Wind Training

APQP4Wind is the common frame of reference to be used in the industry to strengthen the cooperation between manufacturers and suppliers

 

Automotive and aerospace training

Ensuring quality and safety in every part of the supply chain is vital for the automotive and aerospace industries

 

Environment and energy training

Public concern on environment and energy issues, stricter environmental legislation and increased media attention put more demands on businesses today

 

Food safety training

The food and beverage industry is moving to satisfy demands from international consumers and to open new market opportunities

 

Health and safety training

Your company is expected to care for its employees by managing safety and health in a professional way

 

Healthcare training

Every patient and service user across the globe should get the best care possible

 

Information security and IT service management training

Information is a vital asset for any company, but which also harbours special obligations

 

Medical devices training

Production of medical devices is a strictly regulated business. In almost all countries, and for most medical products, there are requirements and standards to which manufacturers need to show compliance

 

Quality & performance training

An effective quality management system in place can improve your company’s quality processes and overall performance and success

 

Risk management and business continuity training

The purpose of risk management is not to eliminate risk, but to understand it so that you can take advantage of the upside and minimize the downside

 

Social responsibility training

Ensuring your commitment to safeguard human rights and operate in an ethical, responsible manner is essential to instill ethical practices and promote a culture of corporate sustainability