C84.io
About CISO Service Station
Resources
Request a Demo

CISO Service Station

NIS2 · Cyber Resilience Act · On Demand

BSI Trusted ISO 42001 Lead Auditor ISO 27001 NIS2 · CRA
Quick Wins Immediate clarity. Low friction. High signal.
A1
NIS2 Readiness Check
NIS2
Know exactly where you stand before regulators ask.
Gap analysis against NIS2 Article 21 obligations. Board-ready findings report with prioritised action list.
€2,500 – €4,500 2–3 weeks
A2
CRA Scope Assessment
CRA
Find out in days whether your product is in scope — and what that means.
Product classification, essential requirements mapping, market timeline implications.
€1,500 – €3,000 1–2 weeks
A3
Board Risk Briefing
NIS2 · CRA
Your board leaves the room aligned, informed, and ready to decide.
2h facilitated executive session. Regulatory exposure, liability implications, investment priorities.
€800 – €1,500 1 session
A4
Regulatory Radar
NIS2 · CRA
Stay ahead of regulatory change without hiring a legal team.
Monthly briefings on NIS2 & CRA developments. Translated into decisions your leadership team can act on.
€500 – €900 /mo Ongoing
Core Programme Structured compliance. Documented evidence. Audit confidence.
B1
NIS2 Implementation
NIS2
Full compliance delivered — not just a plan, but a programme with evidence.
Policy design, technical controls, incident response procedures, supply chain measures. Art. 21 & 23 aligned.
€8,000 – €15,000 8–16 weeks
B2
CRA Compliance Programme
CRA
Your product meets CE marking requirements under the Cyber Resilience Act.
Security requirements implementation, SBOM, vulnerability disclosure policy, technical documentation.
€6,000 – €12,000 6–14 weeks
B3
Incident Response Plan
NIS2
When something goes wrong, your team knows exactly what to do — and so does the regulator.
NIS2 Art. 23 aligned response plan, notification templates, tabletop exercise, contact matrix.
€3,500 – €6,000 3–5 weeks
B4
Supply Chain Risk
NIS2 · CRA
Understand who in your supplier network poses a risk — and close the gaps.
Vendor risk register, supplier questionnaires, SLA security clauses, third-party audit framework.
€3,000 – €5,500 4–6 weeks
Advanced Long-term posture. Continuous assurance. Strategic edge.
C1
Virtual CISO Retainer
NIS2 · CRA
Senior security leadership — without the overhead of a full-time hire.
Monthly strategic oversight, board reporting, regulatory liaison, audit preparation. NIS2 management body accountability covered.
€1,800 – €3,500 /mo Ongoing
C2
NIS2 Audit Support
NIS2
Face your competent authority with confidence and a complete evidence file.
External audit liaison, evidence portfolio preparation, corrective action management, supervisory Q&A coaching.
€4,500 – €8,000 4–8 weeks
C3
CRA Technical File
CRA
The complete documentation package required for CE marking under CRA.
Technical file compilation, conformity assessment, SBOM, security advisory policy, notified body liaison support.
€5,000 – €10,000 6–10 weeks

Click any service card for details. Ready to get started?

Request a Consultation