During the past several months, ASEE Solutions has organized a series of NIS2 Business Workshops across Zagreb, Split, and Rijeka in Croatia. As cybersecurity experts, we shared practical insights on how organizations can address the requirements of the NIS2 Directive and translate them into stronger security posture, improved identity governance, and better operational resilience.

The workshops focused on several key areas shaping modern cybersecurity: Identity and Access Management (IAM), Multi-Factor Authentication (MFA), AI-driven fraud and phishing threats, and ASEE’s identity security solution CertiLigent.

Identity and Access Management as the Security Foundation

Identity has become the central control point of cybersecurity. Many organizations still operate with fragmented identity systems, which results in inconsistent access rights, limited visibility, and increased security risk.

In the workshops, we explained how centralized Identity and Access Management (IAM) enables organizations to regain control over access governance, enforce consistent policies, and manage identity lifecycles in a structured way. This is especially critical in the context of NIS2 Directive, where accountability and visibility are key requirements.

👉 Learn more about ASEE IAM approach

Multi-Factor Authentication as a Baseline Control

Multi-Factor Authentication (MFA) remains one of the most important baseline security mechanisms. However, its effectiveness depends on proper implementation across all access points. We discussed how MFA should be applied in real environments, including OWA access, SSO applications, workstation logins, and increasingly passwordless authentication models. While MFA does not eliminate all risks, its absence significantly increases exposure to account compromise and unauthorized access.

👉 Explore MFA and authentication solutions

AI-Driven Fraud and Modern Cyber Threats

A significant part of the workshops was dedicated to the growing impact of AI in cybercrime. Attackers are now using generative AI to create more convincing phishing emails, impersonation attempts, and automated social engineering campaigns. Through real-world examples, we demonstrated how these threats are evolving and why traditional awareness-based defenses are no longer sufficient on their own.

CertiLigent: Enabling Identity Security at Scale

We also introduced Certiligent as part of ASEE’s cybersecurity portfolio. TLS/SSL certificate validity periods are rapidly decreasing, increasing operational pressure on IT teams and significantly raising the risk of missed renewals. From 398 to 47 days by 2029, what used to be multi-year validity periods is now moving towards days. Shorter lifespans, compliance requirements, and the growing number of machine identities make manual TLS/SSL certificate management unsustainable.

👉 Explore Certiligent and reguest a free trial demo

NIS2 as a Catalyst for Security Maturity

Across all sessions, one clear message emerged: the NIS2 Directive is not only a compliance obligation, but also an opportunity to improve cybersecurity maturity.

Organizations that invest early in identity security, authentication, and access governance are better positioned to reduce risk, improve visibility, and build long-term resilience.

How ASEE Can Help

If your organization falls under the scope of the NIS2 Directive, now is the right time to evaluate your identity and access management strategy. ASEE Solutions helps organizations design and implement secure identity frameworks, improve authentication practices, and prepare for regulatory compliance with practical, proven solutions.

👉 Explore ASEE NIS2 cybersecurity solutions