NetApp has announced its new Data Protection and Security Assessment service, an assessment designed to help organizations analyze and strengthen the security and protection of their data in the context of the NIS2 directive. The new service responds to the need for companies to have a clear and structured view of the state of their storage infrastructure and their level of preparation for regulatory requirements and cybersecurity risks.

The NIS2 directive significantly expands the scope and requirements of the previous European cybersecurity regulations, incorporating a greater number of sectors and organizations and reinforcing key aspects such as risk management, senior management responsibility, incident reporting and business continuity.

Data has become a central element of regulatory compliance, as most cyberattacks aim to compromise the availability, integrity or confidentiality of critical information. The NIS2 directive must be applied compulsorily in all Member States from October 18, 2024. Although the transposition into a national law has not yet been completed in Spain, organizations must act as if it were fully in force to avoid sanctions.

Solutions for both on-premise and in the cloud

With the new Data Protection and Security Assessment NetApp offers companies a comprehensive audit service specifically aimed at storage environments based on NetApp technology, both on-premises and in the cloud. The evaluation transversally covers the configuration of the systems, data protection policies, security controls and operational procedures, with the aim of identifying vulnerabilities, shortcomings or deviations from good practices and the requirements set out by NIS2.

“Enterprises need to know exactly where they are in order to address NIS2 compliance in an effective and risk-based manner,” says José Luis Álvarez Cubero, executive architect at NetApp EMEA & Latam. “Through the Data Protection and Security Assessment, NetApp professional services help you obtain a complete diagnosis of your storage environment and define a realistic action plan, supported by protection, detection, response and recovery capabilities that reinforce data security and business continuity.”

Strengthen protection

The service is supported by a detailed analysis of data protection and recovery capabilities, including recovery time and point objectives, the consistency of backup and replication policies, and the preparation of restoration processes in the event of a cybersecurity incident. The assessment examines storage environment security mechanisms, such as access controls, encryption, ransomware protection, and alignment with NetApp’s recommended security and configuration best practices to strengthen storage environment protection.

Organizations receive structured reports that provide a clear view of the level of risk exposure and alignment of their storage infrastructure with NIS2 principles. These reports include gap analyzes of current policies and configurations and practical, prioritized recommendations to improve data resilience and reduce the potential impact of an incident.

Secure data management

Beyond diagnosis, Data Protection and Security Assessment is conceived as a starting point for continuous improvement. Based on the results of the evaluation, companies can plan the evolution of their data protection policies and architectures, adapting them to a constantly changing threat environment and an increasingly demanding regulatory framework. This approach is especially relevant in sectors considered essential or important by NIS2.

The launch of Data Protection and Security Assessment is part of NetApp’s strategy to accompany organizations in the secure management of their data, combining technology, services and specialized knowledge. In a scenario marked by the increase in cyberattacks and regulatory pressure, having a structured assessment of the storage environment allows companies to make informed decisions, prioritize investments and demonstrate a diligent and documented approach to cybersecurity.

Organizations receive structured reports with a clear view of the level of risk exposure and alignment of their storage infrastructure

Disaggregated by design, NetApp’s data platform separates storage, services, and control so businesses can modernize faster, scale efficiently, and innovate untethered. As an enterprise storage platform natively integrated into the world’s largest clouds, it gives organizations the freedom to run any workload anywhere with consistent performance, governance, and protection.

Alex Chen
Alex Chen

Alex Chen serves as the chief editor of Asia Tech Journal, bringing over a decade of experience in technology journalism. Previously writing for several globally renowned publications, Alex is celebrated for his insightful analyses and in-depth reporting on tech trends across Asia. Passionate about innovation, Alex specializes in the dynamic technology ecosystem of China and its global impacts.