Get In Touch
katarzyna.szczudlik@gmail.com
Tel: ‪+48 663 696 999‬
Work Inquiries
Schoenherr Attorneys at Law Plac Małachowskiego 1 Warsaw, Poland
ka.szczudlik@schoenherr.eu
Back

Cybersecurity, NIS2 & DORA

NIS2 and DORA are transforming cybersecurity and operational resilience obligations across Europe. I help organisations assess applicability, identify compliance gaps and implement practical governance and risk management frameworks aligned with evolving EU cybersecurity regulation.
Cybersecurity

Why this matters.

Cybersecurity and operational resilience regulation increasingly affects how organisations manage risk, governance and business continuity across digital environments.

Frameworks such as NIS2 and DORA introduce new obligations related to cybersecurity governance, incident response, operational resilience and third-party risk management for organisations operating within the European market.

NIS2 applicability and readiness assessments

Helping organisations determine whether NIS2 applies and prepare for evolving cybersecurity obligations.

  • Applicability assessments
  • Regulatory readiness reviews
  • Obligations mapping
  • NIS2 implementation planning
DORA compliance and operational resilience support

Supporting financial entities navigating DORA requirements and operational resilience frameworks.

  • Gap analysis and implementation roadmaps
  • Operational resilience frameworks
  • Governance and oversight requirements
  • Regulatory preparedness
Cybersecurity governance frameworks and policies

Developing governance structures and policies aligned with cybersecurity and resilience obligations.

  • Information security governance
  • Internal cybersecurity policies
  • Risk management frameworks
  • Governance documentation support
Incident response and regulatory preparedness

Helping organisations prepare for and respond to cybersecurity incidents and regulatory reporting requirements.

  • Incident response planning
  • Regulatory notification obligations
  • Internal escalation frameworks
  • Crisis preparedness support
Third-party and vendor risk considerations

Supporting organisations managing risk across external providers, technology vendors and ICT relationships.

  • Vendor risk assessments
  • ICT third-party oversight
  • Outsourcing considerations
  • Operational dependency reviews
Gap analysis and implementation roadmaps

Identifying compliance gaps and developing practical implementation plans.

  • Current-state assessments
  • Compliance gap analysis
  • Prioritised implementation planning
  • Regulatory readiness programmes
Information security governance support

Advising organisations on governance structures that support long-term cybersecurity compliance.

  • Governance frameworks
  • Roles and responsibilities
  • Oversight mechanisms
  • Policy and documentation reviews
Operational resilience and compliance alignment

Helping organisations align regulatory obligations with operational and business requirements.

  • Resilience planning
  • Compliance integration
  • Operational risk management
  • Cross-functional coordination
Regulatory support for financial and regulated entities

Providing ongoing regulatory guidance for organisations operating within regulated sectors.

  • Financial sector compliance
  • Regulatory interpretation and support
  • Supervisory engagement considerations
  • Evolving regulatory requirements
Cross-functional compliance coordination

Supporting collaboration between legal, compliance, operational and technology teams.

  • Internal stakeholder alignment
  • Compliance programme coordination
  • Governance and reporting structures
  • Regulatory implementation support
Cybersecurity

Advisory scope.

Let’s collaborate

Need support with NIS2 or DORA readiness?

Whether you are assessing regulatory applicability, preparing governance frameworks or strengthening operational resilience, I provide practical legal guidance tailored to technology and regulated businesses operating across Europe.

Partner with me

This website stores cookies on your computer. Cookie Policy