NIS2 Quick-Start Bundle
249,00 €
- 10 essential DOCX files
- Start NIS2 compliance today
- Core Article 21 measures covered
- 1 year of updates included
- Secured by Stripe
Digital download — once you confirm at checkout, the EU 14-day withdrawal right is waived per Directive 2011/83/EU, Art. 16(m).
Description
Start NIS2 compliance today with 10 essential documents—the minimum viable documentation set for Article 21. The Quick-Start Bundle gives your organisation the core policies, procedures, and frameworks needed to demonstrate immediate progress: risk analysis, incident handling, access control, backup, patching, authentication, and measurement—all mapped to the NIS2 Directive, CIR 2024/2690, and ENISA guidance. Not 68 documents that take months. Ten documents you can deploy this afternoon.
CIR 2024/2690 referenced
ISO 27001:2022 cross-referenced
ENISA guidance referenced
UK English
Editable DOCX/XLSX
Why Your Organisation Cannot Afford to Wait on NIS2 Documentation
The NIS2 transposition deadline of 17 October 2024 has passed. Enforcement frameworks are going live across the EU, and three regulatory realities now apply to every organisation in scope:
- Enforcement is active. National competent authorities can audit and sanction entities that lack documented security measures. Waiting for “final guidance” is no longer a viable strategy.
- Penalties are severe. Under Article 34, administrative fines may reach €10,000,000 or 2% of worldwide annual turnover—whichever is higher—subject to national implementing law.
- Board members carry personal liability. Article 20 makes management bodies directly responsible for approving and overseeing cybersecurity risk-management measures.
The gap is not technical—it is documentary. You need to start somewhere. The Quick-Start Bundle is that starting point: 10 focused documents covering the core Article 21 measures, ready to customise and present to your board within days.
10 Essential Documents That Cover the Core NIS2 Measures
The Quick-Start Bundle contains the same templates found in the Complete Toolkit—same 9-section structure (Purpose, Scope, Definitions, RACI matrix, Requirements, Exceptions, Monitoring, References, Appendix), same pre-filled RACI tables, same red-highlighted placeholders, same CIR 2024/2690 references. The only difference is scope: 10 documents instead of 68, focused on the measures most auditors examine first.
Here is exactly what you receive:
| Doc # | Document | NIS2 Measure |
|---|---|---|
| 00a | Welcome & Overview | — |
| 00b | Implementation Guide | — |
| 04 | Information Security Policy | Art. 21(2)(a) |
| 05 | Risk Assessment Methodology | Art. 21(2)(a) |
| 48 | Incident Handling Policy | Art. 21(2)(b), Art. 23 |
| 23 | Backup Policy | Art. 21(2)(c) |
| 28 | Access Control Policy | Art. 21(2)(i) |
| 29 | Authentication Policy (incl. MFA) | Art. 21(2)(j) |
| 20 | Vulnerability & Patch Management | Art. 21(2)(e) |
| 46 | Measurement Methodology | Art. 21(2)(f) |
These 10 documents address six of the ten Article 21(2) security measures—the ones most frequently cited in early enforcement guidance. Every document is an editable DOCX file with organisation-specific fields marked in red bold text, RACI tables for six roles, 3+ KPIs for board reporting, and cross-references to the applicable CIR 2024/2690 Annex section and ENISA technical guidance.
If you already hold ISO 27001:2022 certification, each template notes the corresponding ISO control so you can identify exactly where your existing ISMS needs supplementing for NIS2.
What the Quick-Start Bundle Covers vs. the Complete Toolkit
The Quick-Start Bundle is not a stripped-down product—it is a focused subset. Every document it contains is identical to the version in the Complete Toolkit. The table below shows what is included and what requires the full Toolkit.
| Category | Quick-Start Bundle | Complete Toolkit |
|---|---|---|
| Risk analysis & information security | ISP + Risk Assessment Methodology (2 docs) | Full stack: ISP, methodology, tables, treatment plan, residual risks, report (7 docs) |
| Incident handling | Incident Handling Policy (1 doc) | Policy + minor procedure, log, notification forms, corrective actions (5 docs) |
| Business continuity | Backup Policy only (1 doc) | Full BCP stack: BIA, strategy, plan, crisis management, exercises, DR (9 docs) |
| Access control & authentication | Access Control + Authentication/MFA (2 docs) | Access Control, Authentication, Password Policy + HR Security (5 docs) |
| Vulnerability management | Vulnerability & Patch Management (1 doc) | Patching + Change Management, ICT Acquisition, ICT Security Requirements (4 docs) |
| Effectiveness measurement | Measurement Methodology (1 doc) | Methodology + report, gap analysis, audit tools, compliance matrices (11 docs) |
| Supply chain | — | Supplier policy, clauses, directory, self-assessment, checklist (6 docs) |
| Board & governance | — | Board Briefing Pack + Board Resolution (2 docs) |
| Compliance & audit tools | — | NIS2–ISO mapping, audit checklists, CIR matrix, NCA guide (9 docs) |
The Quick-Start Bundle covers the core measures. If your organisation also needs supply chain documentation, full business continuity planning, board governance artefacts, or audit tools, the Complete Toolkit provides all 68 documents. Every Quick-Start document is included in the Complete Toolkit, so nothing you purchase here is wasted—you are buying the first 10 chapters of a 68-document programme.
Which Product Fits Your Starting Point
| Document Category | Quick-Start Bundle €249 |
Complete Toolkit €497 |
Manufacturing Pack €349 |
Energy Pack €349 |
|---|---|---|---|---|
| Management & Planning | Generic | Generic | Sector-Adapted | Sector-Adapted |
| Risk Management | Generic | Generic | Sector-Adapted | Sector-Adapted |
| Core Security Policies | Generic | Generic | Sector-Adapted | Sector-Adapted |
| Business Continuity | — | Generic | Sector-Adapted | Sector-Adapted |
| Supply Chain | — | Generic | Sector-Adapted | Sector-Adapted |
| Incident Management | Generic | Generic | Sector-Adapted | Sector-Adapted |
| Measurement & KPIs | Generic | Generic | — | — |
| Board & Governance | — | Generic | — | — |
| Compliance & Audit Tools | — | Generic | — | — |
Common Questions About the Quick-Start Bundle
Is the Quick-Start Bundle enough for full NIS2 compliance?
No. The Quick-Start Bundle covers six of the ten Article 21(2) security measures—the core policies most auditors examine first. Full compliance requires documentation across all ten measures, including supply chain security, business continuity planning, board governance, and audit procedures. The Complete Toolkit covers all Article 21(2)(a) through (j) measures with 68 documents.
Can I upgrade to the Complete Toolkit later?
Yes. Contact us for upgrade pricing. Every document in the Quick-Start Bundle is identical to the corresponding document in the Complete Toolkit, so your existing customisation work carries over with no rework.
Are these templates legal advice?
No. These templates are general samples intended as a starting point for your NIS2 documentation. They do not constitute legal advice. Every document must be reviewed by a qualified professional before adoption, taking into account your sector, jurisdiction, and organisational context.
Do you offer refunds?
This is a digital download product. The right of withdrawal is waived at checkout in accordance with EU Directive 2011/83/EU, Article 16(m). You will be asked to consent to this waiver before completing payment.
Are updates included?
Yes. Your purchase includes one year of updates. As EU guidance evolves—new ENISA publications, member state implementation acts, or CIR amendments—updated templates are made available for download at no additional cost during your update period.
Start NIS2 Compliance This Afternoon
The Quick-Start Bundle gives you 10 editable, regulation-mapped documents that cover the core Article 21 measures—enough to show your board that compliance is underway and to give auditors something concrete to review. Download, customise the red-highlighted fields, and start closing your documentation gap today. When you are ready to expand, every document upgrades seamlessly into the Complete Toolkit.
Stripe-secured checkout
VAT handled at checkout
1 year of updates included
Disclaimer: These templates are general samples for internal use. They do not constitute legal advice and must be reviewed by a qualified professional before adoption. No document in this pack guarantees NIS2 compliance. See our full Disclaimer.
Reviews
There are no reviews yet.