I want to help implementing NIS2 #1507
Description
Dear Repo maintainers,
My name is Yme van der Linden (Atos) and I want to help contribute to this repository, by properly implementing the NIS2 regulatory compliance built-in initiative (https://github.com/Azure/azure-policy/blob/master/built-in-policies/policySetDefinitions/Regulatory%20Compliance/NIS2.json).
Before I get started - I have a few questions that need addressing.
- Is it even possible to contribute to the regulatory compliance built-in initiatives, or does Microsoft implement these themselves?
ONLY IF answer to previous question is YES:
- I still see a lot of 'Microsoft managed controls' under this preview. What should I do with them? Can they be hidden from end-users?
- Do you have a preference for a certain mapping for fetching NIS2 controls? For example, I found this mapping https://www.bsigroup.com/globalassets/localfiles/de-de/isoiec-27001/ressourcen/[bsi-ce-nis2-mapping-tool-de-de-en.pdf](https://www.bsigroup.com/globalassets/localfiles/de-de/isoiec-27001/ressourcen/bsi-ce-nis2-mapping-tool-de-de-en.pdf) by BSI group that maps NIS2 articles to ISO27001 controls, which would make implementing NIS2 technical controls pretty straightforward.
Hope to hear from you!
Kindest regards, Yme