Does Wasabi Comply with the NIS2 Directive?

The Network & Information Security Directive, version 2 (NIS2)  is the updated EU-Wide measure for a high common level of  cybersecurity for networks and information systems across the Union.  The most recent directive expanded the number of sectors covered from 7 to 15 as compared to the original NIS Directive.

NIS2 includes addressing the security of supply chains and supplier relationships by requiring individual companies to address cybersecurity risks in the supply chains and supplier relationships.

Wasabi has implemented the use of ZIPHQ as its Third-Party Vendor Management System. This includes a review by the Finance, IT, Legal and Compliance departments/teams. This review creates a vendor criticality rating and gives guidance to the frequency of SLA requirements as well as for additional reviews as needed. Approval must be given to any Third-Party vendor that is utilized by Wasabi.

Furthermore, Wasabi maintains a comprehensive list of all suppliers and sub-processors, and continuously reviews and considers downstream effects of such suppliers in the event they no longer meet Wasabi’s business needs. 

Wasabi continues to review the NIS2 Directive and will  implement appropriate requirements as the Directive is further disseminated and regulatory requirements.