NIS2: Cybersecurity Talent for Every Sector
The NIS2 directive requires organisations in essential and important sectors to have their cybersecurity in order. That starts with qualified professionals. MVPeople Group delivers the CISOs, Security Officers and GRC Consultants that make your organisation NIS2-compliant.
What is NIS2?
The NIS2 directive (Network and Information Security Directive 2) is the successor to the original EU NIS Directive from 2016. NIS2 sets significantly stricter requirements for the cybersecurity of organisations in essential and important sectors. The directive entered into force on 16 January 2023 and should have been transposed into national legislation by 17 October 2024.
In the Netherlands, NIS2 is being implemented through the Cybersecurity Act (Cyberbeveiligingswet/Cbw). This law affects thousands of organisations in sectors such as energy, transport, healthcare, finance, digital infrastructure and manufacturing. Organisations that fall under the law must demonstrably take appropriate technical and organisational measures to secure their network and information systems.
The penalties for non-compliance are substantial: fines up to 10 million euros or 2% of global annual turnover for essential entities. But more importantly: board members are held personally liable for cybersecurity. This makes NIS2 no longer just an IT matter, but a board-level priority.
Compliance requires more than technology alone — it demands qualified cybersecurity professionals who develop policies, manage risks, handle incidents and train employees. And that is precisely where MVPeople Group excels: we deliver the talent that makes your NIS2 compliance a reality.
NIS2 Sectors & Organisations
The NIS2 directive distinguishes between essential and important entities. Below you will find an overview of the sectors and the key Dutch organisations that fall under the directive.
Essential entities
Energy
EssentialEnergy producers, distributors and suppliers that safeguard the Dutch energy supply.
Shell · TenneT · Gasunie · Eneco · Vattenfall · Stedin
Transport
EssentialAviation, railways, ports and logistics hubs that facilitate transport in the Netherlands.
KLM/Air France · NS · Schiphol Group · Port of Rotterdam · Transavia
Banking
EssentialBanks and credit institutions that support the Dutch financial system.
ING · ABN AMRO · Rabobank · de Volksbank · Van Lanschot Kempen
Financial market infrastructure
EssentialExchanges, pension managers and insurers that form the financial market infrastructure.
Euronext · APG · PGGM · Achmea
Healthcare
EssentialHospitals, university medical centres and medical technology companies that protect public health.
Erasmus MC · Amsterdam UMC · Philips Healthcare · UMCG · Radboudumc
Drinking water
EssentialDrinking water companies that guarantee the supply of clean drinking water to millions of Dutch citizens.
Vitens · Evides · PWN · Waternet · Oasen
Digital infrastructure
EssentialTelecom providers, data centres and internet exchanges that form the digital backbone of the Netherlands.
KPN · Equinix · NL-ix · AMS-IX · Leaseweb
Government
EssentialCentral government and executive agencies that deliver essential public services to citizens.
Rijksoverheid · UWV · Belastingdienst · SVB · DUO
Important entities
Postal & courier services
ImportantPostal and parcel delivery services that keep the Dutch logistics chain running.
PostNL · DHL Netherlands · DPD · GLS
Waste management
ImportantWaste processors and recycling companies responsible for sustainable waste management.
Renewi · SUEZ Nederland · HVC · AVR
Chemicals
ImportantChemical producers and specialists that supply essential raw materials and substances.
AkzoNobel · DSM-Firmenich · LyondellBasell · Nouryon
Food
ImportantFood producers and distributors that secure the Dutch food chain.
Ahold Delhaize · FrieslandCampina · Heineken · JDE Peet's
Manufacturing
ImportantHigh-tech manufacturers and industrial producers that put the Netherlands on the global map.
ASML · Philips · VDL Groep · DAF Trucks · Thales Nederland
Digital service providers
ImportantIT service providers and managed service providers that deliver digital services to businesses.
Atos · Capgemini · Conclusion · Sogeti
Research
ImportantResearch institutes conducting scientific research for the public sector.
TNO · KNMI · NWO · Deltares · Marin
Which profiles do you need?
NIS2 compliance requires specific cybersecurity expertise. These are the profiles we deliver for organisations that fall under the NIS2 directive.
CISO
Chief Information Security Officer — responsible for the overall cybersecurity strategy and NIS2 compliance at board level.
GRC Consultant
Governance, Risk & Compliance specialist who drafts policies, conducts risk analyses and ensures NIS2 compliance.
Security Officer
Operationally responsible for day-to-day security, incident response and implementing NIS2 measures.
DPO / Privacy Officer
Data Protection Officer who oversees the protection of personal data and the alignment between GDPR and NIS2.
IT Risk Manager
Identifies and manages IT risks, conducts Business Impact Analyses and develops continuity plans in accordance with NIS2.
Security Awareness Specialist
Develops and implements awareness programmes so employees can recognise cyber threats and act correctly.
Frequently asked questions about NIS2
Everything you need to know about the NIS2 directive and how MVPeople Group can help your organisation.
Ready to become NIS2-compliant?
MVPeople Group delivers the cybersecurity specialists your organisation needs for NIS2 compliance. From interim CISO to Security Officer — we have the talent in our network.