Cegeka Careers Language Why Cegeka Back
Trinity of Innovation

5G, Artificial Intelligence and hybrid cloud: all breakthrough technologies in and by themselves. But their real potential?

Discover the future with us
Icons_Navigation_Cegeka&Society

Cegeka & Society

We develop innovative solutions with a positive impact on the environment, people, and society.

Icons_Navigation_Why Cegeka

Why Cegeka

As a family-owned IT solutions provider, we work In close cooperation with our customers.

Icons_Navigation_Our Story

About Us

Our strong values form the cornerstone of our identity and are at the baseline of our success.

Icons_Navigation_Annual Report

Annual Report

Dive into the details of our growth. Read the full report and learn more about our continued success.

More Cegeka

Our Management

Corporate News

Contact & Locations

Solutions Back
Solutions
Hybrid Cloud

Hybrid Cloud

Explore the added value of cloud adoption for your business

Data solution

Data & AI

Discover our different data solutions to help you become a data-driven company.

RegulatoryCompliance_Visuals_Navigation (1)

Regulatory Compliance

Ensure GDPR & GxP compliance with our comprehensive solutions.

Cyber Security & Networking Solution

Cyber Security & Networking

With cyber resilience, your organisation becomes a bit more secure with each day.

Digital Workplace Solution

Digital Workplace

Hybrid workplaces that increases productivity and reduces costs.

Testing_Visuals_IconNavigation (1)

Quality Engineering

Ensuring seamless software, one Test at a time.

Cegeka Applications Services

Cegeka Applications Services

Building the applications to embed growth, innovation and agility

Business Solutions

Business Solutions

Transform your business with Microsoft Dynamics ERP and CRM, integrated with Microsoft’s Power Platform.

5G_Citymesh

5G & Mobile Private Networks

Expertise and development experience to bring all the advantages of 5G.

Products and platform solutions

Products & Platforms

Software solutions that optimize business processes and drive success.

Services Back
Services
Website_Navigation_IT_Team_Extension_3

IT Team Extension

The best IT professionals to support your projects

Outsourcing Services

Outsourcing & Managed Services

Outsourcing your IT helps you to focus on your strategy.

Website_Navigation_Consultancy

Consultancy

The right skills and attitude to support the IT projects at your office

Website_Navigation_Projects

Projects

Integrating the right digital solutions for your IT project

Industries Back
Industries

Our industry-tailored services are designed to address specific challenges and opportunities across different industries

All industries
Website_Navigation_Agriculture

Agriculture

Cegeka has a deep understanding of the agri and food ecosystem and the opportunities it creates.

Website_Navigation_Healthcare

Healthcare

By creating leading digital solutions and connecting individuals, processes and systems.​

Energy & Utilities

Energy & Utilities

The arrival of smart electricity grids will allow companies to take care of their own energy management

Finance & Insurance

Finance & Insurance

Take major steps towards cloud computing to increase effectiveness through the use of AI and big data.

Manufacturing

Manufacturing

Production chains are becoming intelligent networks with real-time track-and-trace systems.

Website_Navigation_Mobility

Mobility

Offer citizens, businesses and visitors a better experience by integrating the best digital solutions for mobility.

Insights Back
Knowledge is our backbone

We believe in sharing our insights and expertise with you. Explore our resources and learn more about our products, services and industry trends.

Icons_Navigation_Case Studies

Case Studies

Step into the world of our delighted customers and see how we helped them achieve their goals.

Icons_Navigation_News Items

Corporate News

Stay in the loop with our company news, announcements, awards and events.

Icons_Navigation_Blogs

Blogs

Read our latest articles on topics ranging from technology, innovation, business and beyond.

Icons_Navigation_Webinars

Webinars

Be part of the action with our live or on-demand webinars, where our experts share invaluable knowledge.

Icons_Navigation_Ebooks

E-books & Whitepapers

Download our guides and reports on various aspects of technology and business.

Icons_Navigation_Events

Events

Find out where we are going to be next, and register for our upcoming events.

CTG Academy

Academy

Enhance your skills with our expert-led training courses, tutorials, and certifications at our Academy.

Join our Academy
Back
Select language

Global   (EN)

Austria   (DE)

Belgium   (NL)

Belgium   (FR)

Denmark   (EN)

Germany   (DE)

Italy   (IT)

Romania   (EN)

Sweden   (EN)

The Netherlands   (NL)

United Kingdom   (EN)

United States   (EN)

Let’s get in touch
Cegeka Why Cegeka
Trinity of Innovation

5G, Artificial Intelligence and hybrid cloud: all breakthrough technologies in and by themselves. But their real potential?

Discover the future with us
Icons_Navigation_Cegeka&Society

Cegeka & Society

We develop innovative solutions with a positive impact on the environment, people, and society.

Icons_Navigation_Why Cegeka

Why Cegeka

As a family-owned IT solutions provider, we work In close cooperation with our customers.

Icons_Navigation_Our Story

About Us

Our strong values form the cornerstone of our identity and are at the baseline of our success.

Icons_Navigation_Annual Report

Annual Report

Dive into the details of our growth. Read the full report and learn more about our continued success.

More Cegeka

Our Management

Corporate News

Contact & Locations

Solutions
Solutions
Hybrid Cloud

Hybrid Cloud

Explore the added value of cloud adoption for your business

Data solution

Data & AI

Discover our different data solutions to help you become a data-driven company.

RegulatoryCompliance_Visuals_Navigation (1)

Regulatory Compliance

Ensure GDPR & GxP compliance with our comprehensive solutions.

Cyber Security & Networking Solution

Cyber Security & Networking

With cyber resilience, your organisation becomes a bit more secure with each day.

Digital Workplace Solution

Digital Workplace

Hybrid workplaces that increases productivity and reduces costs.

Testing_Visuals_IconNavigation (1)

Quality Engineering

Ensuring seamless software, one Test at a time.

Cegeka Applications Services

Cegeka Applications Services

Building the applications to embed growth, innovation and agility

Business Solutions

Business Solutions

Transform your business with Microsoft Dynamics ERP and CRM, integrated with Microsoft’s Power Platform.

5G_Citymesh

5G & Mobile Private Networks

Expertise and development experience to bring all the advantages of 5G.

Products and platform solutions

Products & Platforms

Software solutions that optimize business processes and drive success.

Services
Services
Website_Navigation_IT_Team_Extension_3

IT Team Extension

The best IT professionals to support your projects

Outsourcing Services

Outsourcing & Managed Services

Outsourcing your IT helps you to focus on your strategy.

Website_Navigation_Consultancy

Consultancy

The right skills and attitude to support the IT projects at your office

Website_Navigation_Projects

Projects

Integrating the right digital solutions for your IT project

Industries
Industries

Our industry-tailored services are designed to address specific challenges and opportunities across different industries

All industries
Website_Navigation_Agriculture

Agriculture

Cegeka has a deep understanding of the agri and food ecosystem and the opportunities it creates.

Website_Navigation_Healthcare

Healthcare

By creating leading digital solutions and connecting individuals, processes and systems.​

Energy & Utilities

Energy & Utilities

The arrival of smart electricity grids will allow companies to take care of their own energy management

Finance & Insurance

Finance & Insurance

Take major steps towards cloud computing to increase effectiveness through the use of AI and big data.

Manufacturing

Manufacturing

Production chains are becoming intelligent networks with real-time track-and-trace systems.

Website_Navigation_Mobility

Mobility

Offer citizens, businesses and visitors a better experience by integrating the best digital solutions for mobility.

Insights
Knowledge is our backbone

We believe in sharing our insights and expertise with you. Explore our resources and learn more about our products, services and industry trends.

Icons_Navigation_Case Studies

Case Studies

Step into the world of our delighted customers and see how we helped them achieve their goals.

Icons_Navigation_News Items

Corporate News

Stay in the loop with our company news, announcements, awards and events.

Icons_Navigation_Blogs

Blogs

Read our latest articles on topics ranging from technology, innovation, business and beyond.

Icons_Navigation_Webinars

Webinars

Be part of the action with our live or on-demand webinars, where our experts share invaluable knowledge.

Icons_Navigation_Ebooks

E-books & Whitepapers

Download our guides and reports on various aspects of technology and business.

Icons_Navigation_Events

Events

Find out where we are going to be next, and register for our upcoming events.

CTG Academy

Academy

Enhance your skills with our expert-led training courses, tutorials, and certifications at our Academy.

Join our Academy
Global   Global EN Austria   Austria DE Belgium   Belgium NL Belgium   Belgium FR Denmark   Denmark EN Germany   Germany DE Italy   Italy IT Romania   Romania EN Sweden   Sweden EN The Netherlands   The Netherlands NL United Kingdom   United Kingdom EN United States   United States EN Careers Let’s get in touch
Home Discover our latest blogs Discover our latest blogs Detection & Response in Light of NIS2: 5 Key Observations
Cyber security & Networking
NIS2
3 minutes reading

Detection & Response in Light of NIS2: 5 Key Observations

The new European cybersecurity directive, NIS2, has sparked considerable discussion and analysis. Security experts Stanley Kemkes and Willem Janssens from Cegeka examine NIS2 from the perspective of (managed) detection and response. From conducting forensic investigations for incident reporting to monitoring entire IT and OT environments, here are their key insights.

Willem Janssens

Willem Janssens

November 29, 2024

#1 Detection & Response: The Shift to Managed Services

The concepts underlying NIS2 were largely familiar even before the directive officially emerged. Many aspects, such as the rising number of serious cyber incidents, the increasing sophistication of cybercriminals, and the evolving nature of attacks, have been central to cybersecurity for years. Additionally, the integration of IT with critical infrastructures and daily business operations has intensified.

According to Willem Janssens, Product Manager for Cybersecurity at Cegeka, these factors make managed detection and response (MDR) the preferred approach for many organizations today. 
“You need the capability to monitor and detect threats 24/7 with sufficient knowledge and resources, followed by swift responses. Given the significant investments required, most organizations cannot manage this internally. Advanced technologies and specialized security professionals are essential, and they must also work outside the typical 9-to-5 schedule,” he says.

For organizations covered under NIS2, managing this internally becomes even more challenging due to requirements like the mandatory reporting obligation. Willem notes, “The market has been steadily shifting towards MDR, and NIS2 is accelerating this trend.”

#2 Reporting Obligations and Supply Chain Challenges

NIS2 expands its scope in several areas, such as the sectors covered (now including "essential" and "important" entities) and the stricter requirements organizations must meet. Compared to frameworks like ISO 27001 and NIST CSF, NIS2 introduces more stringent demands.

Stanley Kemkes, Security Solutions Architect at Cegeka, explains: “A logical first step towards NIS2 compliance is an assessment, which we conduct using our Continuous Security Assessment Framework (CSAF). During the gap analysis, part of CSAF, organizations evaluate their status against NIS2 requirements and identify what needs implementation.”

Many organizations are now addressing common gaps, particularly in proactive supply chain management and incident reporting obligations. “In the detection and response pillar, the ability to monitor the entire environment is another significant challenge,” Stanley adds.

#3 Reporting Requires Specialized Forensic Expertise

NIS2 mandates reporting significant incidents in three stages to the national regulator. Stanley elaborates: 
“Within 24 hours, an initial report must be filed, followed by a detailed assessment within 72 hours, including descriptions of the incident, its impact, and urgency.”

This process demands thorough forensic investigations conducted by security professionals with expertise in IT, legal matters, and forensic techniques. Stanley emphasizes the need for skills in areas like logging, operating systems, and preserving the chain of evidence. 
“At Cegeka, this work is handled by our CSIRT (Computer Security Incident Response Team) specialists,” he says.

Willem adds that 24/7 availability is crucial. “NIS2 doesn’t recognize weekends. An incident on a Friday afternoon must be thoroughly analyzed and reported by Monday. Given the complexity and availability demands, only a few organizations, including Cegeka, can provide this level of forensic service.” 

#4 Monitoring Entire IT and OT Environments Is Complex

NIS2 implies that organizations must monitor and secure their entire IT and OT environments and networks. Willem points out, 
“Using tools like XDR (Extended Detection and Response) for workplace monitoring doesn’t guarantee full coverage of the entire environment. This is one of the biggest NIS2 challenges in detection and response. Few organizations have complete visibility into their environments.”

Monitoring OT (Operational Technology) environments is even more challenging, as they often involve outdated technologies and lack client software. Stanley explains, 
“OT environments frequently require network connection monitoring through sensors. Incident response in these settings is also more complex because you can’t simply shut down critical processes or equipment.”

Willem adds, “Often, even internal IT staff are unaware of the OT environment’s intricacies. While attack patterns in OT resemble those in IT, standard actions might not be feasible in OT environments. Effective mitigation requires close collaboration with the affected organization.”

#5 NIS2 Compliance as a Continuous Process

While the focus is currently on achieving compliance and resilience under NIS2, maintaining these standards is equally critical. Willem explains, 
“In our cyber resilience model, we define four pillars: assess, prevent, detect & respond, and recover. These represent cyclical steps aimed at continuous security improvement. Insights from incidents feed back into the prevention pillar to strengthen defenses.”

Cegeka supports this entire cycle, from assessment (CSAF) to recovery (via the Cegeka Modern SOC platform). Additionally, Cegeka can manage full IT outsourcing for its clients. Stanley notes, 
“When clients centralize their security services with us, we achieve higher security levels due to improved collaboration and information sharing.” 

Willem highlights practical advantages: “Managing multiple vendors creates bottlenecks. At Cegeka, we streamline operations and provide real-time insights through our Security Observability Dashboard, offering a comprehensive view of vulnerabilities, incidents, and compliance.”

Learn More

Whether you are subject to NIS2, work with NIS2 organizations, or have a broader interest in cyber resilience and MDR, you can gain valuable insights during a webinar hosted by Stanley Kemkes and Willem Janssens: “An Effective Way for Incident Detection, Response, and Reporting”.

Willem Janssens

Willem Janssens

More of Willem Janssens articles

Webinar

Thursday Threat Talks

Four Thursdays, four webinars, four practical topics.

In this webinar series, you will gain numerous insights and best practices that will boost your resilience and NIS2 security compliance.
Watch the webinars now

Get in touch