Preparing for the NIS2 Directive with Joseph Mager, NS

The tribe opens its virtual door to our CISO community, to exchange ideas, evaluate the good, the bad and the ugly, challenge the status quo, and share lessons learned.

This time we welcome Joseph Mager, Deputy CISO at Nederlandse Spoorwegen (NS-Dutch Railways) and leading preparations for the NIS2 Directive within NS.

Can't make it on this date? No worries, just register and you will automatically receive a link to the video directly after the event....

Preparing for the NIS2 Directive

Joseph Mager joined Nederlandse Spoorwegen (NS) in 2011 as Corporate Information Security Officer. In this position he defined the NS security roadmap, set-up an implementation program for realizing the roadmap and influenced major outsourcing projects to include security. He also set-up the Information Risk Management group at NS. After this group was formed he took up the position of Information Security for a Business Unit and specialised in topics like privacy and risk management. Throughout his career he has presented at various conferences, e.g. ISF Annual Congress in 2016, 2017 and 2019, as well as at the Rail Cybersecurity Summit 2019 and the ENISA Conference in 2022.

Joseph has been involved with the implementation of the NIS1 directive within NS and currently with preparing for NIS2.

The NIS2 Directive is the latest cybersecurity legislation designed to ensure a high common level of security of network and information systems across the European Union. Similar to its predecessor, it aims to enhance the security and resilience of critical infrastructure and digital services, and strengthen cybersecurity cooperation among EU member states.

However, the impact of the NIS2 Directive on organizations is significant, as it imposes stricter security requirements, reporting obligations, and enforcement sanctions. It also introduces new classification of covered entities and expands the list of sectors and activities that are subjected. Therefore, it is crucial for organizations covered by NIS2 to not only be aware of their new obligations but also initiate preparations to ensure compliance.

Beyond just explaining the directive, Joseph will present his lessons learned from experiences with the ‘NIS1’ Directive, highlighting the challenges faced and the strategies adopted by NS. He will highlight the key changes and challenges that the NIS2 Directive brings and the approach that NS is taking to prepare and implement.

Audiences:

Cybersecurity leaders, experts and risk owners looking to understand the implications of the NIS2 Directive and how to prepare for compliance. National Cyber Security Centers and Government entities looking to stay close with their vital sectors and understanding their perspectives based on actual use case, challenges and experiences to date.

Agenda:

14h00: Welcome -- Wim Stoffelen, CISO Tribe (Netherlands)

14h10: Preparing for NIS2 -- Joseph Mager, NS

14h35: Q&A Session -- Audience, Joseph and Wim

14h55: Closing remarks and next webinars -- Wim Stoffelen