From NIS2 concept to operations
A compromised admin account today leads to the encryption of critical systems within hours. NIS2 requires exactly this kind of operational response — not just documented policies. §30 BSIG mandates ten risk management measures, including identity and access control, backup management, and incident handling. Jonathan Haist and Jonathan Zabel show two building blocks that deliver: Managed Red Tenant reduces the attack surface of privileged accounts to the point where compromise never becomes a full-scale incident, and Managed Dark Tenant stands by as a pre-provisioned emergency environment that gets you back to operational in hours after a ransomware attack, not weeks.
For an overview of the directive itself, see our NIS2 page.
What we cover in the hour
- NIS2 status: what the NIS2UmsuCG actually says, and what of it applies in practice in 2026.
- Managed Red Tenant: how we reduce the attack surface of privileged accounts far enough that a compromise never becomes a full-scale incident, and which risk management measures from §30 BSIG this covers operationally.
- Managed Dark Tenant: how a pre-provisioned emergency environment ensures you are back to operational in hours after a ransomware encryption, not weeks, and how this maps to the measures in §30 BSIG.
- Q&A: your questions directly to Jonathan Haist and Jonathan Zabel.
Meet the speakers
Previous NIS2 webcasts and articles
Are you ready for NIS2?
The new NIS2 directive places a whole range of requirements on companies and their cyber security - from minimum measures ...
