Service overview
The audit combines operational cybersecurity review with AI security review. It helps companies prepare for NIS2/Cyberbeveiligingswet obligations without pretending that readiness is the same thing as formal certification.
Security Division
NIS2 & AI Security Readiness Audit
A focused readiness audit for companies that need a practical view of cyber risk, NIS2 preparation, AI usage risk, shadow AI, data leakage exposure, incident reporting readiness, supplier dependencies, and the evidence needed to make decisions.
Readiness scope
01NIS2 / Cyberbeveiligingswet readiness
02AI security audit
03Shadow AI risk map
04Data leakage review
05Evidence pack and roadmap
Scope
- Critical business systems, cloud services, websites, applications, and admin surfaces
- AI tools, agents, browser workflows, copilots, automations, and staff usage patterns
- Policies, approval rules, incident response readiness, supplier dependencies, and evidence gaps
- Practical controls that reduce data leakage, workflow exposure, and governance risk
Methodology
We combine intake, document review, stakeholder interviews, system inventory, AI workflow review, policy gap analysis, supplier dependency review, and evidence scoring. Delivery can be scoped for a 7 to 10 business day option when stakeholders and documents are ready.
Sample risk scorecard
- NIS2 applicability and duty-of-care readiness
- Incident reporting readiness
- AI data leakage exposure
- Shadow AI visibility
- Supplier and dependency risk
- Policy and evidence maturity
Deliverables
What you receive.
01
NIS2 applicability screening
02
Cybersecurity risk assessment
03
AI tool usage review
04
Shadow AI risk map
05
Data leakage risk review
06
AI prompt and workflow risk review
07
AI policy gap analysis
08
Staff behavior risk review
09
Supplier/security dependency review
10
Incident reporting readiness review
11
Website/app exposure basics
12
Executive evidence report
13
Prioritized remediation roadmap
14
Optional staff training session
Process
Readiness process.
01
Scope & Intake
02
AI and Systems Inventory
03
Risk Review
04
Policy and Evidence Gap Analysis
05
Report and Roadmap
06
Executive Review Call
07
Optional Remediation Support
Packages
Scope options.
Starter Readiness Scan
From EUR 950
For smaller SMEs that need a first risk overview.
- Focused intake
- Core risk screen
- Short findings memo
- Priority actions
Professional Readiness Audit
From EUR 2,500
For SMEs and AI-enabled teams that need a deeper report and evidence pack.
- Full readiness report
- AI usage review
- Evidence pack
- Executive review call
Security Readiness Partner
Monthly retainer, custom scope
Ongoing support for AI security, NIS2 preparation and secure operations.
- Recurring reviews
- Roadmap support
- Policy updates
- Remediation guidance
Internal links
Security service routes
Official resources
Verify the source material
These external resources are included so buyers can validate the regulatory and AI-risk basis directly. They do not imply endorsement or certification.
FAQ
Questions buyers ask.
How long does the audit take?
A focused delivery option can be scoped for 7 to 10 business days when intake, stakeholders, systems, and documents are ready.
What does the final report include?
Findings, risk levels, evidence status, control gaps, AI usage risks, supplier notes, incident reporting readiness, and a prioritized remediation roadmap.
Does this make us compliant?
No provider should guarantee that from a readiness audit. The work helps prepare evidence and close gaps; formal legal or certification status requires separate evaluation.
Build the evidence before pressure arrives.
Start with a scope review. We will identify the highest-risk systems, AI workflows, evidence gaps, and the fastest practical path to a useful readiness report.