How the ConformityAgent readiness process works

1

Initial readiness request

The company submits basic information about its sector, size, technology context and reason for requesting the assessment.

2

Preliminary NIS2 applicability indication

The platform structures the information and produces a preliminary indication regarding possible NIS2 relevance, classification uncertainty and missing information.

3

Readiness questionnaire

The company answers practical questions grouped by governance, risk management, incident response, access control, backup, supplier security, business continuity, awareness and evidence.

4

Evidence mapping

Available documents, screenshots, policies, registers and records are mapped against the expected evidence areas.

5

AI-assisted draft preparation

The system prepares a structured draft containing the readiness score, gap analysis, risk register, evidence register and corrective action plan.

6

Human technical assessment

The human assessment team reviews the structured output, checks consistency, identifies obvious gaps and adjusts the recommendations before the result is presented to the client.

7

Management-ready readiness package

The client receives a practical package that can support management decisions, remediation planning, consultant discussions or preparation for a later formal audit.