GAP-analysis and needed actions to reach compliance to NIS2 directive in a global industrial manufacturing company
| dc.contributor.advisor | Frantti, Tapio | |
| dc.contributor.author | Lämsä, Markus | |
| dc.date.accessioned | 2024-12-19T12:11:02Z | |
| dc.date.available | 2024-12-19T12:11:02Z | |
| dc.date.issued | 2024 | |
| dc.identifier.uri | https://jyx.jyu.fi/handle/123456789/99109 | |
| dc.description.abstract | This master’s thesis investigates the cybersecurity requirements and needed actions for achieving compliance with the NIS2 directive in a large industrial manufacturing company. The research obeys to the Design Science Research (DSR) methodology, which enables the creation of practical solutions through iterative processes. The primary goal of this thesis is to evaluate the current state of cybersecurity in the organization, identify critical security gaps, and propose actionable measures to close these gaps. The research process combines a literature review that establishes the theoretical framework with qualitative data gathered from interviews with key stakeholders. The interviews provide insights into the organization's cybersecurity challenges and opportunities. Quantitative data was collected with the ISF Information Security Healthcheck tool, which supported the analysis and prioritization of the identified gaps. Five critical security functions have been identified as the key areas needing improvement: asset management, information security risk management, business continuity, supply chain security, and security governance. The suggested solution is then assessed through interviews with experts from the target organisation, and further major initiatives are recommended based on the evaluation. Finally, this thesis provides a practical, clear framework for the company for meeting the NIS2 directive's critical requirements. Suggestions for future research are made based on the research findings and the feedback from the interviews after the identified solution has been evaluated. Keywords: Information security, NIS2 directive, Cybersecurity, Manufacturing Industry, Compliance | en |
| dc.format.extent | 71 | |
| dc.format.mimetype | application/pdf | |
| dc.language.iso | eng | |
| dc.rights | In copyright | |
| dc.title | GAP-analysis and needed actions to reach compliance to NIS2 directive in a global industrial manufacturing company | |
| dc.type | master thesis | |
| dc.identifier.urn | URN:NBN:fi:jyu-202412197919 | |
| dc.contributor.tiedekunta | Informaatioteknologian tiedekunta | fi |
| dc.contributor.tiedekunta | Faculty of Information Technology | en |
| dc.contributor.yliopisto | Jyväskylän yliopisto | fi |
| dc.contributor.yliopisto | University of Jyväskylä | en |
| dc.contributor.oppiaine | Kyberturvallisuuden maisteriohjelma | fi |
| dc.contributor.oppiaine | Master's Degree Programme in Cyber Security | en |
| dc.type.coar | http://purl.org/coar/resource_type/c_bdcc | |
| dc.rights.copyright | © The Author(s) | |
| dc.rights.accesslevel | restrictedAccess | |
| dc.type.publication | masterThesis | |
| dc.format.content | fulltext | |
| dc.rights.url | https://rightsstatements.org/page/InC/1.0/ | |
| dc.rights.accessrights | The author has not given permission to make the work publicly available electronically. Therefore the material can be read only at the archival workstation at Jyväskylä University Library (https://kirjasto.jyu.fi/en/workspaces/facilities/facilities#autotoc-item-autotoc-2). | en |
| dc.rights.accessrights | Tekijä ei ole antanut lupaa avoimeen julkaisuun, joten aineisto on luettavissa vain Jyväskylän yliopiston kirjaston arkistotyösemalta. Ks. https://kirjasto.jyu.fi/fi/tyoskentelytilat/laitteet-ja-tilat#autotoc-item-autotoc-2. | fi |
Aineistoon kuuluvat tiedostot
Aineisto kuuluu seuraaviin kokoelmiin
-
Pro gradu -tutkielmat [29743]
Ellei muuten mainita, aineiston lisenssi on In copyright