Active collaboration with NCSC
With the upcoming Cyber Security Act (Cbw) to be implemented in the Netherlands in 2025, it will be mandatory for NIS2 organizations to register in the European Entity Register. The NCSC has created a central registration point for this purpose. This registration allows the government to share cyber threat information, such as planned attacks or vulnerabilities in the vendor chain. This could include information from public sources, but also intelligence from the NCSC's own monitoring. In addition, Conclusion works with other managed service providers and the NCSC on a regular basis to exchange cyber threat intelligence.
Innovative solution for chain management
Conclusion developed an innovative solution that identifies vulnerabilities within infrastructures and provides an overview of the entire supplier chain. Conclusion plans to link this solution, originally developed for internal monitoring, to the NCSC portal to further enrich the information and, in the future, automatically update the registration with the NCSC. This solution enables companies to monitor vulnerabilities across the entire chain in near-real time and keep an up-to-date overview of the risks within their chain.
In addition, the solution can generate a Software Bill of Materials (SBOM), providing instant insight into software components present. This helps customers prioritize incidents and simplifies communication with partners.
