Home Pricing FAQ About

Frequently Asked Questions

Everything you need to know about NIS2 Shield and NIS2 compliance.

About NIS2 Directive

What is NIS2?
NIS2 (Network and Information Security Directive 2) is an EU regulation that establishes cybersecurity requirements for essential and important entities. It came into effect in 2023 and member states must adopt it by October 2024.
Who must comply with NIS2?

NIS2 applies to:

  • Essential entities: Energy, transport, banking, health, water, digital infrastructure, public administration
  • Important entities: Postal services, waste management, food, manufacturing, digital providers

Thresholds: 50+ employees OR €10M+ turnover in covered sectors.

What are the penalties for non-compliance?
  • Essential entities: Up to €10M or 2% of global turnover
  • Important entities: Up to €7M or 1.4% of global turnover
  • Personal liability: C-level executives can be held personally responsible

About NIS2 Shield

Is NIS2 Shield really free?
Yes. All core libraries are MIT licensed and free to use, even commercially. We offer optional paid support tiers for organizations that need SLAs, priority support, or enterprise services.
What does NIS2 Shield include?
  • django-nis2-shield: Backend middleware for Django (logging, rate limiting, SIEM)
  • @nis2shield/react-guard: Client-side security for React (session protection, telemetry)
  • Infrastructure Kit: Docker Compose, Helm charts, Terraform modules
  • Auditor Kit: CIS benchmarks, NIS2 self-assessment, cryptographic specs
Does NIS2 Shield make me compliant?
NIS2 Shield provides the technical controls to address many NIS2 requirements, but compliance also requires organizational measures (policies, training, governance). We cover the technical side; you'll need to pair it with appropriate processes.

Technical Questions

What Python/Django versions are supported?
  • Python: 3.8, 3.9, 3.10, 3.11, 3.12
  • Django: 3.2 LTS, 4.0, 4.1, 4.2 LTS, 5.0
What SIEM integrations are available?

Built-in support for:

  • Elasticsearch / OpenSearch
  • Splunk (HEC)
  • IBM QRadar (Syslog/LEEF)
  • Graylog (GELF)
  • Sumo Logic
  • Datadog

Custom integrations possible via Fluent Bit.

How does the Encrypted Twin work?

The Crypto-Replicator creates zero-trust cloud backups:

  1. Generates a random AES-256 session key
  2. Encrypts data with AES-256-GCM
  3. Wraps session key with RSA-2048-OAEP (public key)
  4. Sends encrypted envelope to cloud (S3, GCS, Azure Blob)

The private key stays offline—cloud provider cannot decrypt.

Deployment

Can I deploy on-premise?
Yes. NIS2 Shield is designed for on-premise deployment. Use Docker Compose for smaller deployments or Helm charts for Kubernetes clusters.
Which clouds are supported?
We provide Terraform modules for:
  • AWS: EKS, RDS, S3
  • GCP: GKE, Cloud SQL, Cloud Storage
  • Azure: AKS, PostgreSQL Flexible, Blob Storage

Still have questions?

Can't find the answer you're looking for? Reach out to us.

GitHub Discussions Email Us