Focus Topics

NIS2 & AI Act: From Legislation to Enforcement

The national transposition of NIS2 and the AI Act has moved from preparation to direct legal obligations for boards and CISOs. The shift from EU directive to Dutch law means immediate liability and supervisory action.

DORA & Privacy Resilience: From Compliance to Supervision

DORA is already fully in force – companies are no longer in preparation mode but under ongoing audit and reporting obligations. The priority has shifted to demonstrability, audit trails, and resilience metrics that can withstand scrutiny from regulators and customers alike.

Advanced Threat Defense: Ransomware & State-Sponsored Attacks

Proactively defending against sophisticated threats through integrated recovery and crisis simulation.

Zero Trust Architecture: Identity-Centric Security in Hybrid & Cloud Environments

Minimizing attack blast radius through comprehensive IAM, PAM, and Zero Trust principles.

AI for Defense & AI Risk Management

Applying AI for threat detection and operational defense while governing AI risks including bias and transparency.

OT/IoT Security & Privacy: Connected Device Governance

Securing operational technology and IoT devices while ensuring privacy by design and data minimization.

Crisis Communications & Multi-Regime Reporting

Coordinating incident response with tight reporting timelines across GDPR, NIS2, DORA.

Post-Quantum Security & Data Sovereignty

Preparing for quantum threats while maintaining data sovereignty across borders.