Implementing NIS2 is neither a technology project nor a one-off compliance exercise. Above all, it represents a fundamental shift in how an organisation manages cybersecurity. This new approach spans processes, roles, and management decisions. It also requires organisations to be operationally prepared to respond to incidents. Companies must therefore
NIS2 Directive fundamentally transforms the role of the CIO within an organisation. Cybersecurity is no longer purely an IT operational concern – it has become a matter of strategic accountability, subject to regulatory and board-level oversight. For CIOs, this means new responsibilities, but also a significantly stronger position within the
How is artificial intelligence changing the everyday life of financial institutions? We talk with Mariusz Walasiewicz, a business and systems analyst who observes and co-creates AI implementations in banks, investment firms, and insurance companies. From his perspective, this is no longer about futuristic plans but a reality that already
The NIS2 Directive introduces specific and measurable obligations across governance, technology, and incident reporting. In practice, these are no longer general “recommendations,” but enforceable requirements subject to regulatory oversight. Organizational obligations Organizations covered by NIS2 must implement a structured approach to cybersecurity management, including: formal cybersecurity risk management, information security
Every IT project is like a journey full of unexpected obstacles. That’s why risk management and bottleneck identification are critical – they determine whether you reach your destination smoothly or get stuck along the way. Effective risk identification and the ability to respond flexibly form the foundation of well-managed
NIS2 is the commonly used name for Directive (EU) 2022/2555 of the European Parliament and of the Council, formally titled the Directive on measures for a high common level of cybersecurity across the Union. It is an EU legal act aimed at strengthening organizations’ resilience to cyber threats and
For insurance companies, onboarding is one of the most important moments of customer interaction — the first step in the customer journey. It is at this stage that the first impression is formed, and the process determines whether the client will stay for the long term. At the same time, it is one of the stages most prone to errors and delays. Onboarding automation can be
Czy duża instytucja może działać zwinnie? Może – o ile zacznie od uporządkowania i usprawnienia kluczowych procesów. Poznaj podejście do zwinności w bankowości i ubezpieczeniach.
Working with clients can be surprising in many ways — especially when seen through the eyes of an experienced business–system analyst. Edyta Koślacz, who has long been involved in insurance industry projects, shares her insights from the front line of business interactions: both the positive aspects and the areas that still await improvement.
Wiele organizacji finansowych – zwłaszcza banków i firm ubezpieczeniowych – funkcjonuje w strukturach silosowych, z wyraźnym podziałem na działy i zespoły funkcjonalne. Taka organizacja pracy często utrudnia elastyczne reagowanie na zmiany, automatyzację procesów i pełną transformację cyfrową. Tymczasem procesowe podejście do zarządzania (ang. process-oriented thinking) umożliwia stworzenie organizacji skoncentrowanej na