🚨  NIS2 is now in effect. Security awareness is now legally required in the EU.

Check compliance
Start your free trial

NIS2 security awareness training

Comply with NIS2 by offering recurring security awareness training to your employees. Recommended by NIS2 implementers and auditors.

Start free trial

No payment information needed.

Join 500+ organizations already protected by Guardey, including:
Royal Smilde logo Koopmans logo

What is NIS2?

The NIS2 Directive is the European regulation that sets cybersecurity requirements for organizations operating in critical and important sectors. It requires organizations to implement appropriate measures to manage cybersecurity risks, including the continuous training of employees in security awareness.

The directive applies to organizations with more than 50 employees or an annual turnover above EUR 10 million, operating in sectors such as energy, transport, healthcare, public administration, digital infrastructure, food production, and digital services.

NIS2 replaces the previous NIS Directive and introduces stricter obligations, including management accountability and fines of up to EUR 10 million or 2% of global annual turnover.

Training requirements under NIS2

NIS2 requires organizations to implement “appropriate measures” for cybersecurity. In practice, this means organizations must be able to demonstrate that they:

  • Train all employees in cybersecurity awareness, not just IT staff
  • Provide continuous education, rather than one-time training
  • Measure effectiveness and report on it during audits
  • Adapt training to roles and responsibilities
  • Specifically address phishing awareness, including reporting behavior

Without proper documentation, it becomes impossible to demonstrate compliance during an audit.

How Guardey helps you comply with NIS2

Training employees actually complete
Guardey delivers weekly 3-minute micro-challenges. Gamified, short, and relevant. Our customers report significantly higher completion rates compared to traditional e-learning, because employees don’t experience training as a burden.

Audit-ready compliance, without manual work
Real-time reporting shows per employee what was completed, when, and with what score. Export audit reports in one click. No more manual tracking when auditors ask for proof.

Training tailored to roles and sectors
Sector-specific modules for healthcare, education, government, and industry. Custom content for role-based risks. A mobile app for employees without a fixed workplace.

Phishing simulations included
Integrated phishing simulations with 100+ templates. Train employees to recognize and report suspicious emails, while documenting results for your compliance records.

Start a 14-day free trial and see Guardey in action.

What NIS2 requires What Guardey offers
Continuous cybersecurity training for all employees ✓ Weekly 3-minute challenges, automatically delivered
Audit-ready documentation ✓ Real-time LMS dashboard with export functionality
Role-based and responsibility-based training ✓ Custom content and sector-specific modules
Phishing awareness and reporting culture ✓ Integrated phishing simulations with reporting
Continuous learning instead of one-time training ✓ Rotating challenges, including new AI-driven threats
ISO 27001-aligned approach to information security ✓ ISO 27001 certified platform, GDPR compliant, EU data residency

Are you subject to NIS2?

NIS2 does not apply to every organization. Answer three quick questions to get an indication.

Does your team count 50+ members or has your annual revenue crossed the €10M mark?

Does your organization operate in one of the following 18 designated sectors?

Energy, transport, healthcare, financial market infrastructure, digital infrastructure, public administration, food, postal services, waste management, space, research, chemicals, manufacturing, ICT services, drinking water, wastewater, critical materials processing or digital services.

Would your services be classified as essential to the daily operations of society?

If you can answer two out of the three questions with “Yes”, you are likely subject to NIS2. The directive requires you to implement continuous cybersecurity training for all employees. Start a 14-day free trial today to see how Guardey helps you meet these requirements.

What our customers say

“After receiving a lot of phishing emails, we decided to do a phishing test last year to test the cyber awareness of our employees. During this test, we sent fake emails to see how many would click a possibly harmful link. The result? 29.4% did, which was higher than expected. After using Guardey for only a few weeks the scores had improved by 84%.”

Guardey customer quote - Oke BV

Michael van Nol

Algemeen Directeur
View Case Study
Eyeon Zwart logo

“Being ISO 27001 certified comes with many responsibilities for our employees. This means we have to make our staff aware of cyber threats and be able to show that we’re doing enough to do so. That's why we use Guardey.”

Dan Roozemond

Data science lead at EyeOn
View Case Study
Inexto logo

“The uptick in training participation has been fantastic. Employees have even set up their own little Guardey competitions internally. So we have the company-wide leaderboard, but the teams themselves are now even having their little competitions in Microsoft Teams group chats. Guardey has brought out the competitive nature in them.”

Jonathan Farrell

Information and Quality Assurance Manager at Inexto
View Case Study
Koopmans logo

“I call Guardey the Duolingo of cybersecurity. The mobile app was a reason for me to go our frontline workers and say, ‘Hey, you can now do this on your phone.’”

Ivo Reitsma

IT Manager at Royal Koopmans
View Case Study

“I can see that employees are getting better at spotting phishing attempts. They use the report phishing button more often and hesitate at the right moments.”

Mejndert Romkes

IT Manager
View Case Study

“Our employees are noticeably more aware of cybersecurity. They’re more alert now — they pay closer attention to email content and are less likely to click a suspicious link.”

Marc Hofland

IT Manager
View Case Study
Synerlogic logo

““When security awareness training is fun, people stay engaged. And that’s exactly what Guardey enables.””

Christiaan Spikker

CISO
View Case Study

“How much of what is said during a one-time presentation still sticks with you a few months later? With Guardey, our employees are constantly aware of cyber threats.”

Rolf Kapitein

Head of automation at Probedrijven
View Case Study

Plans & pricing

Guardey offers flexible plans to match your organization’s needs, from phishing simulations to a complete security awareness program.

Compare features, see what’s included in each plan, and request a tailored quote based on your organization.

View plans & request a quote

Frequently asked questions about NIS2

What is the difference between NIS2 and the Cybersecurity Act (Netherlands)?

NIS2 is the European directive. The Cybersecurity Act is the national implementation in the Netherlands. In practice, they impose the same requirements, apply to the same organizations, and carry the same consequences.

Does my organization fall under NIS2?

The directive applies to organizations in 18 designated sectors with more than 50 employees or an annual turnover above EUR 10 million. Not sure? Use the quick check above or speak to our specialists.

What kind of training is required under NIS2?

NIS2 requires “appropriate measures,” which in practice means continuous, measurable training for all employees. Guardey’s weekly micro-challenges are designed to meet these requirements.

How do I prove compliance during an audit?

Guardey’s LMS dashboard provides per-employee insights into completed training, scores, and timelines. Reports can be exported in one click.

What are the penalties for non-compliance?

Fines can go up to EUR 10 million or 2% of global annual turnover, whichever is higher. Management can be held personally accountable.

Can I try Guardey before committing?

Yes. Guardey offers a 14-day free trial without requiring payment details. All features are available during the trial.

Start your NIS2 compliance today

Start a 14-day free trial and see within a week how Guardey trains your employees and builds your compliance documentation. No payment details required. No minimum number of users.