Tested recovery
A real build-and-run test confirms the supplier’s software recovers; the result is recorded in the pack.
NIS2 holds your board personally liable for your suppliers’ resilience, and relying on a policy document won’t satisfy an auditor. The NIS2 evidence pack gives you a tested, signed record that your critical software can be recovered.
An untested continuity plan leaves you exposed on both.
A real build-and-run test confirms the supplier’s software recovers; the result is recorded in the pack.
Documents the resilience of each direct supplier relationship that NIS2 Article 21(2)(d) brings into scope.
Captures backups, deposit currency, and recovery procedures for the Article 21(2)(c) continuity measure.
A repeatable report proving that your supplier-resilience measures work, aligned to the Article 21(2)(f) requirement.
One signed artifact to serve as continuity proof in place of a folder of correspondence.
Daily automated syncs keep the deposit live, so the evidence reflects the software as it runs today.
Connect the repository, or name a deposit you already hold with us.
We pull the deposit, build it, and confirm it runs — on a schedule that keeps the result current.
The signed certificate and test results — dated and ready for review. Your Article 28 obligation now rests on a proven plan.
Set up in a day. From there, the pack stays current on its own.
Book a demoJordan Adler
Ross Kilshaw
Thiago Mendes
We’ll send the sample pack and your early-access invite.