News

Good news: Fendix is now authorized to perform NIS2 Quality Mark audits!

Good news: Fendix is now authorized to perform NIS2 Quality Mark audits!
The NIS2 directive asks quite a bit of organizations. And if you are part of a supply chain of an NIS2 organization, you need to be able to demonstrate that you have your cybersecurity in order. That's exactly what the NIS2 Quality Mark is for. And we have good news: Fendix is now officially authorized to perform the QM10 and QM20 audits.
This article was last updated on
28/5/2025

What does that mean?

Our consultants are trained, tested and qualified to conduct these audits. So do you want to get started with the NIS2 Quality Mark and need a party that knows what it's doing, so you can achieve the mark without worry? Then Fendix is the right company for you.

 

Just a step back: what is the NIS2 Quality Mark again?

The NIS2 Quality Mark is a seal of approval that suppliers to NIS2 organizations use to demonstrate that they have their cybersecurity in order. This is because NIS2 organizations are responsible for digital security throughout the chain and thus want to be able to demonstrate that their suppliers have their affairs in order.

 

The label has three levels:

QM10 - Basic measures: Consider MFA, incident management, clear policies and some awareness.

QM20 - Comprehensive security: Consider encryption, auditing, tighter access controls and monitoring.

QM30 - Advanced cybersecurity: Consider management of OT systems and stricter cloud services control.

 

For whom is this relevant?

Are you an SME providing services to an NIS2 organization? Then QM10 is often enough. Do you provide ICT or OT services and your impact on your client is a bit larger? Then QM20 is usually the standard. Does your organization fall directly under the NIS2 legislation and are you subject to registration? Then QM30 is required as a minimum. In addition, additional certification, such as ISO 27001 or NEN 7510, is strongly recommended.

Whatever your situation, we will help you get a clear picture of what is needed and test whether you are ready.

 

Why Fendix?

We make organizations resilient with information security and privacy. With our fresh, no-nonsense approach, we help companies not only obtain certifications, but also strengthen their processes and awareness.

 

While you focus on your core business, we ensure that information security and privacy are no longer a concern. With a pragmatic, flexible and innovative approach and a focus on sustainable partnerships, we invest in your organization and the future.

 

💼 What we do

 

  • Implementation: guidance and relief from certifications such as ISO 27001, NEN 7510, SOC2 and NIS2
  • Security Awareness: interactive trainings, gamified learning through Guardey, and phishing simulations to increase awareness within your team
  • Specialty as a Service: deployment of certified Privacy Officers, Security Officers and Data Protection Officers on a flexible basis
  • Maintenance & improvement: continuity in information security through regular audits, risk assessments and complete maintenance packages so you stay compliant with the standard

 

We are very pleased to contribute to the NIS2 Quality Mark. The more organizations comply with the relevant quality mark, the stronger the chain becomes. And that's what we do it for!

Want to know more?

Do you want to know which level of the NIS2 Quality Mark suits your organization? Or are you curious how an audit works? Contact us and together we'll see what's smart.

Kilian Houthuijzen
Commercial Manager
085 773 60 05
To news overview

Related articles

Information Security
Emergency kit for organizations: why every business needs a continuity plan now
read more
Information Security
When will NIS2 take effect? Deadlines & legislation explained
read more
KAM Certificeringen is now Fendix

We are a partner of

SGS
BSI
TUV
DEKRA
KIWA
Brand Compliance
LRQA
DNV
Digitrust