The NIS2 Quality Mark meets the needs of our members
Remco van der Linde,
Director of Technology
Remco van der Linden is Director of Technology & Market at Techniek Nederland. The industry he represents is familiar with many certifications and standards. The NIS2 Quality Mark has a solid foundation: “Achieving this standard is accessible and doesn’t feel like a punishment”.
Can you tell us a little about your industry?
Remco van der Linden: ‘Our industry has been heavily regulated for years, due to technical and safety aspects. Originally, we were supervised by the energy companies, but after these controls disappeared, we introduced private quality schemes to distinguish skilled entrepreneurs from less qualified ones.’
‘Some of our schemes are now required by law, such as certification for geothermal heat pumps and gas boilers. All in all, this has led to an abundance of quality schemes, which is also a problem. In the Netherlands we have too many certifications and inspections, often without taking into account certificates already obtained. This leads to inefficiency and overburdening of entrepreneurs and professionals.’
So you’re saying that less could and should be done?
Remco van der Linden: ‘Yes, it can and should be different. We need to combine more intelligently and avoid duplication. Self-assessment and peer review can help. Data and risk driven control instead of checking everything is key. We need to make sure that everything doesn’t have to be demonstrated again under different schemes.’
There is a new cybersecurity law coming, the NIS2 directive. How do you see this affecting your industry, given the large number of suppliers?
Remco van der Linden: ‘I see that NIS2 is set up very similarly to the CSRD, with more responsibility in the supply chain. Many of our members provide technical equipment for critical infrastructure and have to meet high standards, which increases the administrative burden on these companies. SME suppliers will also have to comply with these requirements, which we want to standardise to prevent each company setting its own requirements.’
What is your view on the NIS2 Quality Mark and secure digital operations?
Remco van der Linden: ‘We promote cyber awareness and try to offer as many tools as possible. The NIS2 Quality Mark offers gradations of requirements and allows for self-assessment or audit if necessary. This choice is nice. The tiered model prevents overburdening. And that’s where the NIS2 Quality Mark comes in. It is in line with the principles of our quality policy.’
‘Often the baseline set by the government is sufficient. We shouldn’t exceed that baseline unnecessarily, unless specifically requested by the client. It’s important that clients are well informed about the levels of the NIS2 Quality Mark and ISO 27001 so that they can choose the right standard for them.’
How do you ensure that entrepreneurs are not put off by (yet) another standard or certification?
Remco van der Linden: ‘By presenting the standard in an entrepreneur-friendly way. The NIS2 Quality Mark, for example, offers sufficient support, such as webinars and a helpdesk. A standard should inspire confidence in customers. It needs to be effective and translated into a business-friendly approach. Achieving the NIS2 Quality Mark is manageable and doesn’t feel like a punishment. A standard shouldn’t be a policeman checking up on you, but a tool that helps entrepreneurs achieve certification with a reasonable amount of effort. As a business organisation, we want to lend a helping hand to ensure that the process is well supported.’
Do you see specific challenges in your industry in terms of cyber and information security?
Remco van der Linden: ‘Certainly. Large members often already have good security measures and the necessary knowledge. Many companies see it as something far away, whereas cyber resilience is crucial for all companies. Communication and awareness are essential to make it part of the way they do business. SMEs also need to realise that customers are likely to demand it of them. So they need to get on board, even if they are smaller.’
Can the new law act as a catalyst to raise awareness?
Remco van der Linden: ‘Certainly. The law is good, but it remains a challenge. Often people only react when something happens. It’s a transition that needs to take place, and we need to make the process as easy as possible for entrepreneurs.’
What else are you working on within the organisation?
Remco van der Linden: ‘At Techniek Nederland we’re working on labour market issues, sustainability, recycling, mobility and craftsmanship. This ranges from access to city centres for delivery vans to the legal certification of gas boilers. We’re also looking at network congestion and digitalisation in the construction and technology sectors.’
What do you enjoy most about your job?
Remco van der Linden: ‘I enjoy working on solutions to societal problems and supporting entrepreneurs. It’s great to see the progress we’re making with digitalisation and cybersecurity. Working with different industries to promote digital security is one of the things I’m passionate about.’
Finally, what do you think is most important when it comes to information security?
Remco van der Linden: ‘The most important thing is that we provide good support to entrepreneurs in making their businesses cyber resilient, without just ticking boxes. We really want to contribute to their success. ‘Not ticking boxes, but igniting sparks’, as we say in the industry.’
Remco van der Linden is Director of Technology & Market at Techniek Nederland. He is responsible for promoting innovation and market development in the technology sector. Since September 2023, he has also been Chairman of the Board of the Central Register of Technology, where he focuses on the digital presentation of craftsmanship and quality.
He also plays a key role in the implementation of the NIS2 legislation, which aims to improve cybersecurity in the sector. He emphasises the importance of collaboration and self-regulation to reduce the administrative burden on businesses and ensure the secure operation of technical systems.
Interviews
Dr. Michel A. Dutrée >>
Remco van der Linde >>
Rick van der Gaag >>
Nathalie Verkade>>
Jan Meijroos >>