NIS2 Supplier Readiness Checklist for SMEs

Not legal advice. A practical operator checklist for evidence conversations with customers, insurers and partners.

Continuity evidence

  • Who controls domains, DNS, mail, hosting and backups?
  • Can you prove restore works?
  • Do you have an incident contact tree?

Cyber hygiene

  • MFA and access review
  • Patch/vulnerability workflow
  • Logging and monitoring

Supplier answers

  • Risk register
  • Recovery objectives
  • Evidence pack and executive report

Book the audit