NIS2 legal minimum.
Fully covered.
Vexelon360 Core covers every mandatory cybersecurity measure under North Macedonia's Law on Network and Information Systems Security (effective January 1, 2026). Every Article 32 obligation — from day one.
NIS2 Compliance Guarantee
Every Vexelon360 Core subscriber receives an Annual Compliance Certificate.
The Law on Network and Information Systems Security (Закон за безбедност на мрежни и информациски системи), published in Службен весник бр. 135 on July 4, 2025, transposes EU NIS2 Directive 2022/2555 into North Macedonian law. Essential entities face fines of up to 2% of annual global revenue for non-compliance. Vexelon360 Core eliminates this risk from day one.
What Core includes — and which law it satisfies
Every feature mapped to its Article 32 obligation.
| Feature | Phase | NIS2 Article |
|---|---|---|
| Gap Assessment | PREPARE | Art. 31 |
| Cybersecurity Advisory | PREPARE | Art. 31 |
| Security Roadmap Development | PREPARE | Art. 31 |
| Security Policy Development | PREPARE | Art. 32(3) |
| Compliance Documentation | PREPARE | Art. 32 |
| Security Awareness Training | PREPARE | Art. 31(2), 39 |
| Bi-Annual Vulnerability Scanning | DISCOVER | Art. 32(3)(5) |
| Exposure Risk Scoring | DISCOVER | Art. 32(3)(1) |
| Cloud Security Posture Review | DISCOVER | Art. 32(3) |
| EDR / XDR Deployment | FORTIFY | Art. 32(3)(2) |
| Email Security Hardening | FORTIFY | Art. 32(3) |
| MFA Implementation & Guidance | FORTIFY | Art. 32(3)(10) |
| Zero Trust Advisory | FORTIFY | Art. 32(3)(9) |
| Network Security Review | FORTIFY | Art. 32(3) |
| Backup Security Validation | FORTIFY | Art. 32(3)(3) |
| System Hardening | FORTIFY | Art. 32(3) |
| MDR 8/5 — Managed Detection & Response | DEFEND | Art. 32(3)(2) |
| Incident Response Support | DEFEND | Art. 32(3)(2) |
| Authority Reporting | DEFEND | Art. 33 |
| 3h / 24h / 72h MKD-CIRT Reporting | DEFEND | Art. 33(3) |
| Quarterly Compliance Review | DEFEND | Art. 31 |
| 24/7 Emergency Hotline | DEFEND | Art. 33(5) |
| Annual Compliance Certificate | DEFEND | Art. 32 |
| Executive & Technical Security Reporting | DEFEND | Art. 32 |
Need more coverage?
Vexelon360 Prime
24/7 MDR + Penetration Testing
Exceeds all NIS2 requirements. Adds quarterly scanning, external pentest, SIEM, and threat intelligence.
Vexelon360 Elite
Full Spectrum — Zero Ceiling
Red team exercises, dark web monitoring, digital forensics, internal + external pentest, monthly scanning.
Frequently asked questions
Does Vexelon360 guarantee NIS2 compliance in North Macedonia?
Yes. All three tiers of Vexelon360 — Core, Prime, and Elite — are built to satisfy every cybersecurity risk management measure required under Article 32 of the Law on Network and Information Systems Security (Закон за безбедност на мрежни и информациски системи), effective January 1, 2026. The Core tier covers the legal minimum. Prime and Elite exceed all requirements. Every tier includes Authority Reporting, 3h/24h/72h MKD-CIRT reporting capability, and an Annual Compliance Certificate.
What is the difference between Vexelon360 Core, Prime, and Elite?
Core is designed for organizations that need to meet the legal minimum requirements of North Macedonia's NIS2 law. It includes gap assessment, security policies, bi-annual vulnerability scanning, EDR/XDR, MDR 8/5, incident response, and the full MKD-CIRT reporting chain. Prime adds 24/7 MDR, quarterly vulnerability scanning, external penetration testing, SIEM, threat intelligence feeds, and phishing simulations. Elite is the full-spectrum tier, adding monthly vulnerability scanning, internal and external penetration testing, dark web monitoring, third-party risk assessment, social engineering assessments, red team exercises, digital forensics, and proactive threat hunting.
What is the Protection Loop in Vexelon360?
The Protection Loop is the structured methodology behind Vexelon360. It consists of four continuous phases: Prepare (gap assessment, policies, compliance documentation, training), Discover (vulnerability scanning, penetration testing, dark web monitoring, threat intelligence), Fortify (EDR/XDR, SIEM, MFA, network hardening, zero trust), and Defend (MDR, incident response, MKD-CIRT reporting, threat hunting). Together these phases create a continuous improvement cycle aligned with the risk management requirements of North Macedonia's NIS2 law.
Ready to start?
Ready to satisfy NIS2 from day one?
Vexelon360 Core covers every Article 32 requirement. Annual Compliance Certificate included.