Compliance & Regulation
8 articles
Third-Party Risk: Make Your Suppliers Audit-Ready
A practical guide to vendor risk management under NIS2, DORA and ISO 27001. With concrete checklists and documentation templates for your compliance team.
NIS2 Incident Response: The 72-Hour Reporting Obligation
Learn how to prepare your company for the new NIS2 reporting obligations and build a working incident response plan.
NIS2 Executive Management: Training Obligation & Liability 2025
Mandatory training under NIS2: who is affected? What liability do directors face? All content, obligations & risks explained simply. Get informed now.
Julian Köhn·
What Is OSCAL? A Deep Dive Into Compliance as Code and BSI Grundschutz++
OSCAL turns security controls into machine-readable data. BSI Grundschutz++ adopts it as its native core. We explain the architecture, PDCA methodology and what the January 1, 2026 standard switch means for your ISMS.
Julian Köhn·
AI Governance for SMEs: The Path to AI Act Compliance
The EU AI Act will come into force in August 2026. Learn how, as an SME, you can systematically identify AI risks, integrate them into ISO 27001 and ISO 42001, and remain compliant.
NIS2: The Underestimated Obligation for SMEs and Suppliers
NIS 2 obliges SMEs and suppliers to meet higher cybersecurity standards, reporting channels and ISMS integration for greater digital resilience.
Julian Köhn·
NIS-2, GDPR & ISO 27001: Strategic Compliance Integration
European companies face NIS-2, GDPR & ISO 27001. Learn how integrated compliance strategies reduce costs and build trust.
ESG Compliance: How to Master the New Reporting Obligations
The CSRD is coming: learn how to use ESG compliance as a strategic advantage and turn it into a game-changer with Kopexa!
Julian Köhn·