NIS2Compass is a NIS2 compliance platform that guides small and mid-sized enterprises (SMEs) in Germany through meeting the requirements of the European NIS2 Directive and its German transposition law (NIS2UmsuCG). It is built for organizations with 30 to 250 employees, typically companies with small IT departments of 3 to 10 people who need to address NIS2 obligations alongside their existing responsibilities.
The platform addresses three core problems: it replaces costly consultant engagements for initial compliance setup, supplements existing ISMS solutions with NIS2-specific guidance, and provides a structured starting point for organizations beginning their NIS2 journey from scratch. NIS2Compass delivers structured knowledge resources, ready-to-use document templates, and an interactive implementation guide that helps IT managers and information security officers (ISOs) build NIS2 compliance without relying on expensive external consultants or complex enterprise GRC software.
NIS2Compass is available exclusively in German and focuses on the German regulatory context, including references to BSI (Federal Office for Information Security) standards and IT-Grundschutz methodology. All content (including templates, guide steps, and knowledge articles) is maintained and updated to reflect evolving BSI publications, enforcement guidance, and regulatory developments around NIS2UmsuCG.
Key features and capabilities include:
- Vor-Check (Gap Analysis): 18-question assessment that maps an organization's current security posture against NIS2 requirements, with mappings to ISO 27001 and BSI IT-Grundschutz. The Vor-Check serves as the natural entry point for organizations evaluating their NIS2 readiness.
- NIS2 Guide: An interactive, step-by-step implementation path organized into 8 chapters with approximately 124 actionable steps, covering all major NIS2 compliance areas from governance to business continuity. Progress is tracked per user.
- Knowledge Hub: A library of 40+ expert and practical guide articles covering NIS2 topics such as risk management, incident reporting, supply chain security, and encryption requirements.
- Template Library: 20+ downloadable Word and Excel templates for policies, registers, and documentation that organizations need to produce as part of their NIS2 compliance efforts.
- Blog: Publicly accessible, SEO-focused articles on NIS2 compliance topics for the German market, covering regulatory updates, implementation guidance, and cost comparisons.
NIS2Compass operates on a single subscription tier at €29 per month. It is not an ISMS tool or document management system, it serves as a structured compliance companion that organizations use alongside their existing tools (Word, Excel, SharePoint) to understand, plan, and execute NIS2 compliance requirements.
