{"id":5268,"date":"2026-01-08T19:55:02","date_gmt":"2026-01-08T17:55:02","guid":{"rendered":"https:\/\/rizeanetworks.ro\/?page_id=5268"},"modified":"2026-01-08T20:53:11","modified_gmt":"2026-01-08T18:53:11","slug":"nis2-checklist-90-zile","status":"publish","type":"page","link":"https:\/\/rizeanetworks.ro\/en\/insights\/nis2-checklist-90-zile\/","title":{"rendered":"Nis2-checklist-90-zile"},"content":{"rendered":"<div data-elementor-type=\"wp-page\" data-elementor-id=\"5268\" class=\"elementor elementor-5268\">\n\t\t\t\t<div class=\"elementor-element elementor-element-1900765 e-flex e-con-boxed e-con e-parent\" data-id=\"1900765\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-1617bed elementor-widget elementor-widget-html\" data-id=\"1617bed\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"html.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<article class=\"rn-article\" data-rn=\"insight\">\n\n  <nav class=\"rn-article-top\" aria-label=\"Navigare articol\">\n    <a class=\"rn-back\" href=\"\/en\/insights\/\" aria-label=\"\u00cenapoi la Insights\">\n      <span class=\"rn-back-ico\" aria-hidden=\"true\">\u2190<\/span>\n      <span>\u00cenapoi la Insights<\/span>\n    <\/a>\n\n    <div class=\"rn-breadcrumbs\" aria-label=\"Breadcrumbs\">\n      <a href=\"\/en\/\">Acas\u0103<\/a><span class=\"rn-sep\">\/<\/span>\n      <a href=\"\/en\/insights\/\">Insights<\/a><span class=\"rn-sep\">\/<\/span>\n      <span aria-current=\"page\">NIS2 \u00een practic\u0103<\/span>\n    <\/div>\n  <\/nav>\n\n  <header class=\"rn-article-hero\">\n    <div class=\"rn-hero-inner\">\n      <div class=\"rn-kicker\">\n        <span class=\"rn-dot\" aria-hidden=\"true\"><\/span>\n        <span class=\"rn-tag\">NIS2<\/span>\n        <span class=\"rn-tag\">Compliance<\/span>\n        <span class=\"rn-tag\">Security<\/span>\n      <\/div>\n\n      <h1>NIS2 \u00een practic\u0103: checklist tehnic \u0219i pa\u0219i clari \u00een primele 90 de zile<\/h1>\n\n      <p class=\"rn-lead\">\n        NIS2 nu e \u201cun dosar\u201d. E capacitatea real\u0103 de a preveni, detecta \u0219i r\u0103spunde la incidente.\n        Mai jos ai un plan executabil (IT + management): controale tehnice, eviden\u021be \u0219i un roadmap realist \u00een 90 zile.\n      <\/p>\n\n      <div class=\"rn-meta\">\n        <span>\u23f1\ufe0f 9 min read<\/span>\n        <span>\ud83d\udcc5 Actualizat: 2026-01-08<\/span>\n        <span>\ud83c\udfaf Focus: implementare, nu teorie<\/span>\n      <\/div>\n\n      <div class=\"rn-actions\">\n        <a class=\"rn-btn rn-btn-primary\" href=\"\/en\/solicitare-oferta\/\">Cere audit \/ plan NIS2<\/a>\n        <a class=\"rn-btn rn-btn-ghost\" href=\"\/en\/nis2\/\">Pagina pillar NIS2<\/a>\n      <\/div>\n    <\/div>\n  <\/header>\n\n  <div class=\"rn-article-body\">\n    <div class=\"rn-content\">\n\n      <section class=\"rn-section\" id=\"s1\">\n        <h2>1) Ce \u00eenseamn\u0103 NIS2 \u201cpe bune\u201d pentru IT<\/h2>\n        <p>\n          \u00cen practic\u0103, NIS2 se vede \u00een trei lucruri: <strong>control<\/strong> (ai m\u0103suri implementate),\n          <strong>eviden\u021be<\/strong> (po\u021bi demonstra) \u0219i <strong>resilience<\/strong> (po\u021bi reveni dup\u0103 incident).\n          Dac\u0103 m\u00e2ine apare un incident major, po\u021bi r\u0103spunde rapid \u0219i po\u021bi demonstra ce ai f\u0103cut, cum ai limitat impactul \u0219i cum ai prevenit repetarea?\n        <\/p>\n\n        <div class=\"rn-callout\">\n          <h3>Ideea-cheie<\/h3>\n          <p>\n            Conformitatea nu e doar \u201cpolitic\u0103 + semn\u0103tur\u0103\u201d. E o combina\u021bie de segmentare, acces controlat, backup testat,\n            logging\/monitorizare \u0219i proceduri de r\u0103spuns care chiar se execut\u0103.\n          <\/p>\n        <\/div>\n      <\/section>\n\n      <section class=\"rn-section\" id=\"s2\">\n        <h2>2) Raportarea incidentelor: de ce ai nevoie de observabilitate<\/h2>\n        <p>\n          Raportarea cere informa\u021bii clare: ce s-a \u00eent\u00e2mplat, c\u00e2nd, ce servicii au fost afectate, ce m\u0103suri ai luat \u0219i care e impactul.\n          F\u0103r\u0103 logging \u0219i monitorizare, vei raporta \u201cla ghici\u201d, iar asta te expune la erori \u0219i \u00eent\u00e2rzieri.\n        <\/p>\n\n        <div class=\"rn-callout\">\n          <h3>Ce trebuie s\u0103 ai \u00eenainte de incident<\/h3>\n          <p>\n            Alertare pe servicii critice, loguri centralizate (firewall, VPN, servere, identitate),\n            eviden\u021b\u0103 schimb\u0103ri (change) \u0219i un runbook simplu pentru triere \u0219i escaladare.\n          <\/p>\n        <\/div>\n      <\/section>\n\n      <section class=\"rn-section\" id=\"s3\">\n        <h2>3) Checklist tehnic NIS2 \u2014 controale care conteaz\u0103<\/h2>\n        <h3>A. Acces & identitate<\/h3>\n        <ul class=\"rn-list\">\n          <li>MFA pentru conturi privilegiate \u0219i acces remote (VPN \/ cloud \/ portaluri admin).<\/li>\n          <li>Conturi admin separate + \u201cleast privilege\u201d + revizuire periodic\u0103.<\/li>\n          <li>Acces administrativ doar din re\u021bele dedicate (management \/ jump).<\/li>\n          <li>802.1X (unde e fezabil) pe LAN\/Wi-Fi pentru control autenticare.<\/li>\n        <\/ul>\n\n        <h3>B. Segmentare & limitarea propag\u0103rii<\/h3>\n        <ul class=\"rn-list\">\n          <li>Zone: utilizatori, servere, management, IoT\/CCTV, guest, cloud connectors.<\/li>\n          <li>Firewall rules \u201cdefault deny\u201d \u00eentre zonele critice + excep\u021bii explicite.<\/li>\n          <li>Separare Wi-Fi: SSID\/VLAN + politici pe rol (angaja\u021bi\/guest\/IoT).<\/li>\n        <\/ul>\n\n        <h3>C. Backup & recuperare<\/h3>\n        <ul class=\"rn-list\">\n          <li>Strategie 3-2-1 (ideal cu copie offline\/immutable).<\/li>\n          <li>Test de restore (nu doar \u201cbackup ok\u201d).<\/li>\n          <li>RPO\/RTO clar pentru servicii critice \u0219i exerci\u021bii periodice.<\/li>\n        <\/ul>\n\n        <h3>D. Logging, monitorizare, r\u0103spuns<\/h3>\n        <ul class=\"rn-list\">\n          <li>Centralizare loguri (syslog\/SIEM light) \u0219i reten\u021bie relevant\u0103.<\/li>\n          <li>Monitorizare pe servicii: WAN\/VPN, firewall, AP-uri, servere, certificate.<\/li>\n          <li>Runbook-uri: triere \u2192 izolare \u2192 comunicare \u2192 remediere \u2192 RCA.<\/li>\n        <\/ul>\n\n        <div class=\"rn-divider\"><\/div>\n\n        <p>\n          Dac\u0103 vrei \u201chands-on\u201d, aceste controale se leag\u0103 natural de serviciile tale:\n          <a href=\"\/en\/securitate-it-zero-trust\/\">Securitate & Zero Trust<\/a>,\n          <a href=\"\/en\/monitorizare-observabilitate\/\">Monitoring &amp; Observability<\/a>,\n          <a href=\"\/en\/wifi-enterprise-8021x\/\">Enterprise Wi-Fi<\/a>.\n        <\/p>\n      <\/section>\n\n      <section class=\"rn-section\" id=\"s4\">\n        <h2>4) Roadmap \u00een 90 de zile (realist)<\/h2>\n        <ul class=\"rn-list\">\n          <li><strong>Zilele 1\u201314:<\/strong> inventar, crown jewels, MFA\/admin, backup review, quick wins.<\/li>\n          <li><strong>Zilele 15\u201345:<\/strong> segmentare + firewall policies + acces management + hardening.<\/li>\n          <li><strong>Zilele 46\u201375:<\/strong> observabilitate (Zabbix\/Grafana\/logging), praguri, runbook-uri.<\/li>\n          <li><strong>Zilele 76\u201390:<\/strong> test restore, exerci\u021biu incident, eviden\u021be, \u201cas-built\u201d, plan trimestrial.<\/li>\n        <\/ul>\n\n        <div class=\"rn-callout\">\n          <h3>Rezultatul corect<\/h3>\n          <p>\n            Ai controale implementate, dovezi, un model de operare \u0219i o rutin\u0103 de \u00eembun\u0103t\u0103\u021bire.\n            Asta e \u201cconformitate care rezist\u0103\u201d \u2014 inclusiv c\u00e2nd se \u00eent\u00e2mpl\u0103 incidentul.\n          <\/p>\n        <\/div>\n      <\/section>\n\n      <footer class=\"rn-article-footer\">\n        <div class=\"rn-footer-cta\">\n          <div>\n            <h3>Vrei un plan NIS2 aplicat pe infrastructura ta?<\/h3>\n            <p>Audit + roadmap + implementare + eviden\u021be, f\u0103r\u0103 \u201czgomot\u201d \u0219i f\u0103r\u0103 promisiuni nerealiste.<\/p>\n          <\/div>\n          <div class=\"rn-footer-actions\">\n            <a class=\"rn-btn rn-btn-primary\" href=\"\/en\/solicitare-oferta\/\">Request a quote<\/a>\n            <a class=\"rn-btn rn-btn-ghost\" href=\"\/en\/insights\/\">Vezi toate articolele<\/a>\n          <\/div>\n        <\/div>\n      <\/footer>\n\n    <\/div>\n\n    <aside class=\"rn-rail\" aria-label=\"Cuprins articol\">\n      <div class=\"rn-rail-card\">\n        <h3>Cuprins<\/h3>\n        <p class=\"rn-rail-note\">Navigare rapid\u0103.<\/p>\n        <div class=\"rn-rail-links\">\n          <a href=\"#s1\">1) Ce cere NIS2<\/a>\n          <a href=\"#s2\">2) Raportare<\/a>\n          <a href=\"#s3\">3) Checklist<\/a>\n          <a href=\"#s4\">4) Roadmap 90 zile<\/a>\n        <\/div>\n      <\/div>\n\n      <div class=\"rn-rail-card rn-rail-glow\">\n        <h3>Next step<\/h3>\n        <p>Audit rapid + plan clar \u00een 7\u201314 zile.<\/p>\n        <a class=\"rn-btn rn-btn-primary rn-btn-full\" href=\"\/en\/solicitare-oferta\/\">Start<\/a>\n      <\/div>\n    <\/aside>\n  <\/div>\n\n<\/article>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>","protected":false},"excerpt":{"rendered":"<p>\u2190 \u00cenapoi la Insights Acas\u0103\/ Insights\/ NIS2 \u00een practic\u0103 NIS2 Compliance Security NIS2 \u00een practic\u0103: checklist tehnic \u0219i pa\u0219i clari \u00een primele 90 de zile NIS2 nu e \u201cun dosar\u201d. E capacitatea real\u0103 de a preveni, detecta \u0219i r\u0103spunde la incidente. Mai jos ai un plan executabil (IT + management): controale tehnice, eviden\u021be \u0219i un [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":5241,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-5268","page","type-page","status-publish","hentry"],"blocksy_meta":{"has_hero_section":"disabled","styles_descriptor":{"styles":{"desktop":"","tablet":"","mobile":""},"google_fonts":[],"version":6}},"_hostinger_reach_plugin_has_subscription_block":false,"_hostinger_reach_plugin_is_elementor":false,"_links":{"self":[{"href":"https:\/\/rizeanetworks.ro\/en\/wp-json\/wp\/v2\/pages\/5268","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/rizeanetworks.ro\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/rizeanetworks.ro\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/rizeanetworks.ro\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/rizeanetworks.ro\/en\/wp-json\/wp\/v2\/comments?post=5268"}],"version-history":[{"count":16,"href":"https:\/\/rizeanetworks.ro\/en\/wp-json\/wp\/v2\/pages\/5268\/revisions"}],"predecessor-version":[{"id":5326,"href":"https:\/\/rizeanetworks.ro\/en\/wp-json\/wp\/v2\/pages\/5268\/revisions\/5326"}],"up":[{"embeddable":true,"href":"https:\/\/rizeanetworks.ro\/en\/wp-json\/wp\/v2\/pages\/5241"}],"wp:attachment":[{"href":"https:\/\/rizeanetworks.ro\/en\/wp-json\/wp\/v2\/media?parent=5268"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}