Skip to main content
  • Information Security
  • Regulatory Compliance
  • NIS2

Implementing NIS 2 to secure Europe’s green energy future

From regulatory compliance to operational resilience – protecting the infrastructure that powers our future.

white stairs symbolising challenge

About the client

One of the world’s largest offshore wind power companies faced a rapidly escalating threat landscape, with incidents like the Baltic Sea cable attacks underscoring the urgent need to enhance their security posture.

Challenge

One of the world's largest offshore wind power companies faced an escalating global threat landscape with Baltic Sea cable attacks demonstrating an increased need of improving security posture. Combining this with the approaching NIS2 directive, as well as CER, the client also needed to improve, align and unify security processes and controls throughout the organisation.

Solution

Netlight participated as Information security experts in a project that began with gap assessments across all business units and resulted in a security baseline solution that was also rolled out to all business units. As a second phase the project did deep dives into each different business units: from trading and engineering to HR and IT, understanding how security challenges manifested differently across the different parts of the organisation.

The assessment covered controls and evaluated effectiveness of practices against NIS2, ISO-27001 and IEC-62443 requirements whilst identifying the gaps that could expose the company to both cyber threats and regulatory penalties.

Working closely with the CISO and a cross-business steering committee, the project developed tailored recommendations for each business unit. Each solution was presented with a clear business case that connected security investments to operational outcome with proper controls. The controls were focused on reducing downtime, prevent costly breaches, minimize regulatory risk, and enable secure operations and provide reliable infrastructure to society.

Impact

Compliance assessment: Assessed conformance with ISO-27001, NIST 800, and IEC-62443 across all 11 business units, addressing hundreds of non-conformities and launching seven strategic projects to close organisation-wide security gaps.

Increased conformance: Increased conformance with ISO-27001, NIST 800, and IEC-62443 in prioritized business units implementing controls covering risk management, incident management, security awareness, 3rd party management, business continuity, physical security.

Regulatory Readiness: Established audit-ready security controls for energy production and trading operations, significantly reducing the risk of €10 million fines under emerging NIS2 and CER regulations.

Strategic Planning: Created plans and business cases for security and business functions that proactively address evolving threats, potentially preventing millions in annual losses from unplanned downtime and security breaches.

Contact
our Cybersecurity experts

What are your ambitions? We want to help you achieve them. Drop us an email and we will get back to you as soon as possible.

Contact us

Next up

Impact Story
  • Information Security
  • Certification Process
  • Audit Readiness
Keyboard with a security icon to picture data security.

Impact Story

Fast-track to ISO 27001: strengthening security and governance in just four months

  • Information Security
  • Certification Process
  • Audit Readiness

Netlight led a global SaaS provider to achieve ISO 27001 certification within a tight four-month deadline. By implementing 93 tailored security controls, establishing a robust risk management framework, and streamlining audit readiness, we enhanced market credibility, built sustainable governance, and positioned the client for proactive future growth.

Impact Story
  • Data Protection
  • Risk Management
  • Operational Resilience
whote stones picturing a arrow that goes up

Impact Story

From regulatory pressure to strategic advantage: turning DORA Compliance into operational strength

  • Data Protection
  • Risk Management
  • Operational Resilience

As DORA deadlines loomed, a Nordic loan broker turned compliance risks into opportunities. Rapid expansion had created governance gaps and operational vulnerabilities, threatening penalties and reputational harm. Netlight performed a resilience gap analysis, aligning compliance efforts with strategic growth. By delivering a clear, actionable roadmap, we addressed 160 risks, prioritised high-impact actions, and secured board commitment – all within three months. The result? Beyond compliance, the client built operational resilience, enabling sustainable scaling and competitive differentiation. Regulatory challenges became a foundation for growth and long-term success.

Impact Story
  • User-centered Design
  • Healthcare Technology
  • Security Innovation
keyboard with healthcare item to symbolise digital transformation in the health sector

Impact Story

When security becomes the gateway to innovation: transforming access management in healthcare

  • User-centered Design
  • Healthcare Technology
  • Security Innovation

How a five-year partnership turned identity bottlenecks into research breakthroughs