NIS2PME
PT Try it

Features

Everything an SME needs for NIS2. Nothing it doesn't.

Every feature answers a concrete question: what am I missing? How do I implement? How do I demonstrate it? All without unnecessary complexity.

Step zero

Guided self-assessment, in plain language

The starting point is a 10-question questionnaire written for people who run a business, not for auditors. Each question is mapped to one of the most common vulnerabilities in SMEs and, in turn, to several QNRCS controls.

  • 10 direct questions, no technical jargon
  • Mapped to the most common vulnerabilities in SMEs
  • Priority action plan generated from your answers
  • Redo the assessment whenever your company's reality changes
app.nis2pme.pt
NIS2PME self-assessment questionnaire

The plan

Security controls tailored to your level

From the Basic level (39 controls) to High (91), with 16 optional controls for those who want to go further: based on the classification you indicate at registration, the platform shows only what the QNRCS requires of your organisation, organised across the 6 domains (Govern, Identify, Protect, Detect, Respond and Recover).

  • Clear statuses: not started, in progress, implemented
  • Priority actions derived from the assessment
  • Each control explains its objective in accessible language
  • Filters by domain, status and priority
app.nis2pme.pt
Security controls list with statuses and filters

The implementation

Concrete guidance, control by control

Knowing what is missing is half the journey; the platform helps with the how. Each control includes a description of what is expected, why it is required and practical implementation guidance suited to the reality of an SME.

  • Step-by-step implementation guidance
  • Attach evidence directly to the control
  • Progress history and team notes
app.nis2pme.pt
Control detail with implementation guidance

The demonstration

Reports that speak the language of management and of authorities

Compliance you cannot demonstrate does not exist. Maturity dashboards per domain, progress against the required level, and exportable reports to present to management, auditors or the competent authorities.

  • Maturity radar across the 6 QNRCS domains
  • Compliance percentage against the minimum required level
  • Report export for external presentation
app.nis2pme.pt
Compliance reports and export

And also

Document templates

Security policies, incident response plan, procedures: ready-to-adapt templates instead of blank pages.

Evidence management

Every document, record or proof is attached to its control. Preparing for supervision stops being a treasure hunt.

Multiple users

Roles with distinct permissions for management, technical staff and external consultants: everyone sees and does only what they should.

Audit trail

Every action on the platform is logged: who changed what, and when. Accountability is also a NIS2 requirement.

Portuguese and English

Full interface in PT and EN, useful for international teams or groups with a presence in Portugal.

On-premises with Docker

Free deployment on your infrastructure, fully prepared for Docker. Your data, your rules.

See it with your own eyes

The best way to evaluate the platform is to use it. Assessment, controls and reports: all included, all free.

Online platform coming soon

The online platform (hosted service with demo accounts) is in final preparation. Leave your email and we will let you know as soon as you can try it.

Used exclusively for the launch announcement. No newsletters, no third-party sharing.

Don't want to wait? The on-premises version is already available: deploy via Docker from GitHub