Skip to content
Login to the app
  • There are no suggestions because the search field is empty.

How CyberPilot Can Help You With NIS2

You can use CyberPilot's awareness training to live up to the NIS2 requirements

The new EU regulation for cyber resilience, NIS2, sets new standards for cybersecurity for organizations. Among other things, there are requirements for training employees in cybersecurity. You can use CyberPilot’s awareness training to live up to those. 

Key takeaways and how CyberPilot can help: 

Using Awareness Training for NIS2
NIS2 requires that you:  How to do this with CyberPilot? 
Run ongoing training that trains employees to identify cyber risks and practice good cybersecurity habits  Enroll all employees in our Awareness Training on an ongoing basis 

Train management on their responsibilities under NIS2 with regards to risk management 

 Enroll management and key decision makers to our course “Get Started with NIS2 – for leadership” as a first step in the NIS2 compliance journey 

Have appropriate training depending on the recipient’s role and responsibilities 

 Use our Training Planner to create appropriate role-specific training (see Role-specific training below) 

Cover your biggest risks and vulnerabilities based on a risk assessment 
  • Perform a risk assessment to identify your organization’s biggest vulnerabilities. 
  • Pick out relevant courses for employees working with those areas. E.g., if mobile security or working from home are big concerns, make sure to enroll our courses on those topic. 

Have policies on information system security that are carried out in practice 

 Upload your policies and guidelines to our platform under Own Materials. Then you can add those materials to your training plan to ensure your employees are made familiar with them. 

 

Note: This overview does not cover every aspect of NIS2 compliance, only those aspects that relate to training and awareness. See also our Resources to Guide Your NIS2 Work 

 

Role-specific training 

Training should be specific to the recipient’s role and responsibilities. 

You can accomplish this in CyberPilot by creating specific training plans for specific groups within your organization. 

  1. First, identify which key roles in your organization might need particular training. 
  2. Now, make sure employees in these roles are set up in Groups or Branches on the CyberPilot. Read this guide for how to set up Groups and Branches.
    1. E.g., you could create Groups called “Management”, “IT staff” or “Employees with company-issued phones”. 
  3. Next, go to the Training Planner and set up training plans for each of these groups with relevant courses.
    1. See our Recommended training plans below if you want some inspiration about what courses to use. 

 

Recommended training plans: 

Here are some key groups that might need training in particular areas and our recommended relevant courses. 

This is a suggestion, and you can of course tailor the specific courses you put in your training plans to your organization’s particular concerns. 

Note: If a user is subject to multiple training plans, they will receive the training from both. 

This can, e.g., happen if you have a training plan for all users and another for IT staff. Members of IT staff will then get enrolled to the courses in both. 

This can be a good thing. For example you can use the group-specific training as a supplement to a training plan which always sends out the newly released CyberPilot courses.