NIS2 - HowTo

tczauderna
tczauderna Posts: 19  Freshman Member
Zyxel Certified Network Administrator - WLAN Zyxel Certified Network Administrator - Switch Zyxel Certified Network Administrator - Security Zyxel Certified Network Administrator - Nebula
in Security

Hi everyone,

I need help configuring Zyxel devices in accordance with the NIS2 directive. I am familiar with the general principles of this directive, but I lack detailed information on:

  1. How to properly configure Zyxel devices according to NIS2?
  2. What elements should be included in security reports?
  3. Which vendors are best to collaborate with to ensure NIS2 compliance?
  4. What are the best practices in the context of Zyxel devices?

I am looking for practical tips and technical materials, not marketing fluff. Any advice and experiences would be greatly appreciated.

Thank you!

All Replies

  • Zyxel_Kay
    Zyxel_Kay Posts: 1,279  Zyxel Employee
    Zyxel Certified Network Engineer Level 2 - Nebula Zyxel Certified Network Engineer Level 2 - WLAN Zyxel Certified Network Engineer Level 2 - Switch Zyxel Certified Network Engineer Level 2 - Security
    edited January 16

    Hi @tczauderna

    To help you get started, we recommend referring to the following resources that outline Zyxel's approach to NIS2 compliance:

    1. Use Case and success stories for NIS2 Security: https://www.zyxel.com/global/en/solutions/use-case/nis2-security
    2. NIS2 Security Solution Infographic

    These materials provide practical insights into best practices and configuration tips for aligning Zyxel devices with NIS2 requirements.

    Additionally, could you please clarify your question about

    Which vendors are best to collaborate with to ensure NIS2 compliance?

    Are you looking for vendor-specific tools or services, or partnerships to enhance overall compliance strategies? This will help us provide you with more tailored advice.

    Kay

  • tczauderna
    tczauderna Posts: 19  Freshman Member
    Zyxel Certified Network Administrator - WLAN Zyxel Certified Network Administrator - Switch Zyxel Certified Network Administrator - Security Zyxel Certified Network Administrator - Nebula

    Thank you for sharing the NIS2 compliance materials. I need some more details on how to practically apply these rules to Zyxel devices. My main questions are:

    Configuring Zyxel Devices to NIS2:

    Can you provide a detailed step-by-step guide on how to configure Zyxel devices to comply with NIS2 requirements?

    What specific settings are recommended to ensure maximum security in compliance with this directive?

    Security Report Elements:

    What specific elements should be included in the security reports generated by Zyxel devices?

    Can you provide examples of NIS2-compliant reports?

    Vendor Collaboration:

    Which vendors are recommended to work with to ensure full NIS2 compliance?

    Can you recommend specific tools or services provided by selected vendors that support the NIS2 compliance strategy?

    Best Practices:

    What are the best practices for Zyxel devices to maintain NIS2 compliance?

    What specific Zyxel device features should be used to meet NIS2 requirements?

    Additional Examples:

    Risk Assessment:

    Clear interface to check each host for CVE vulnerabilities, with integration with tools such as OpenVAS or Wazuh.

    Incident Management:

    In case of detection of CVE-related activities, such as SQL injection on a critical host, ensuring automatic cut-off of access in case of critical threat. Integration with incident management systems such as Splunk or IBM QRadar.

    Monitoring:

    Central monitoring of host and server health, with methodology for connecting to tools such as Nagios or Zabbix.

    Compliance Management:

    Use of compliance management tools such as OpenSCAP, CIS, PCI DSS, with examples of solutions offered by FortiOS Audit Compliance.

    Accounting Office Example:

    Example Description: Accounting office with USG 100, GS1930 devices, several hosts, two servers (Windows and Linux) and storage.

    Requirements: Due to the size, costs are a factor, so integration with open-source tools such as Wazuh and Zabbix is ​​recommended.

    Configuration Details:

    Wazuh: Allows monitoring of vulnerabilities on hosts and the number of incidents.

    Zabbix: For central monitoring of host and server health.

    Automatic Reports: Generate reports on vulnerabilities and incidents.

    I would appreciate any advice and experience related to practical use of NIS2 on Zyxel devices.

  • tczauderna
    tczauderna Posts: 19  Freshman Member
    Zyxel Certified Network Administrator - WLAN Zyxel Certified Network Administrator - Switch Zyxel Certified Network Administrator - Security Zyxel Certified Network Administrator - Nebula
    Fortinet.png

  • valerio_vanni
    valerio_vanni Posts: 138  Ally Member
    5 Answers First Comment Friend Collector Third Anniversary

    How did you get that screenshot?

  • tczauderna
    tczauderna Posts: 19  Freshman Member
    Zyxel Certified Network Administrator - WLAN Zyxel Certified Network Administrator - Switch Zyxel Certified Network Administrator - Security Zyxel Certified Network Administrator - Nebula

    works with different systems. This is a snapshot from FortigateOS - on their UTM. In my backyard I work with Fotigate Zabbix Openvas on a daily basis and now I am slowly starting Wazzuh. So from these systems I can provide PrintScreens or conduct work as part of secure information :)

  • tczauderna
    tczauderna Posts: 19  Freshman Member
    Zyxel Certified Network Administrator - WLAN Zyxel Certified Network Administrator - Switch Zyxel Certified Network Administrator - Security Zyxel Certified Network Administrator - Nebula

    https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-check-PCI-compliance-on-the-FortiGate/ta-p/349364

Categories

Security Help Center

EnglishTiếng ViệtРусскийไทย中文(台灣)