€10 million fine or 2% of revenue — and that's just NIS 2

DORA, NIS 2, ISO 27001, GDPR... A new requirement every month?

Want to know where you stand before the regulator does?

I help organisations achieve compliance with the regulatory framework for cybersecurity

Book a call Send me an email

Sounds familiar?

Which standards actually apply to my organisation?

What's mandatory versus merely recommended?

How can I audit without tying up my team for months?

What if I miss something that exposes the company?

The financial risk is real

2% of revenue or €10M
NIS 2 — Essential Entities
4% of revenue or €20M
GDPR — Serious violations
⚠️ DORA
Licence withdrawal, ban from practice

My approach

1

Initial assessment

I identify which standards genuinely apply to your context — no unnecessary over-compliance

2

Field audit

Structured methodology with professional deliverables and a clear timeline

3

Full visibility

Workload for your teams, clear milestones, zero surprises

What I deliver

Complete audit checklist

100 to 160+ control points per standard, aligned with official texts

Executive audit report

Clear summary for management + detailed analysis for technical teams

Prioritised roadmap

Actions ranked by criticality, effort and impact — ready to execute

Validation certificate

Formal closing document, signed by all parties

Reusable templates

Engagement letters, non-conformity sheets, registers, RACI matrices

Standard infographic

Visual overview to understand the framework architecture

Frameworks & Standards covered

Complete audit kits, tested and ready to use for each framework

European regulations

DORA

Digital Operational Resilience — Financial Sector

NIS 2

Cybersecurity Directive — Critical Infrastructure

GDPR / RGPD

Personal Data Protection

ISO international standards

ISO 27001

Information Security Management System

ISO 27002

Information Security Controls

ISO 27005

Security Risk Management

Cybersecurity frameworks

CIS Controls v8

18 controls, 153 safeguards

NIST 800-53

US Federal Security Controls

NIST 800-37

Risk Management Framework

EBIOS RM

Risk Analysis (ANSSI)

Ready to get clarity on your compliance?

30-minute initial call to identify your priorities — free, no commitment

1) Identify applicable standards
2) Timeline and budget estimate
3) Free initial assessment

Let's discuss your project

Book a slot Send me an email