6 sections · 42 audit questions · every article, annex and clause · v2022-12-14
This page lists every regulatory leaf of NIS2 in the order it appears in the regulation — each article, annex and clause. The audit checklist treats every leaf as a separate audit row, including the permissive ones.
Click a row's citation to jump to it. The audit-question count shows how many auditable rows the checklist generates from that leaf (zero means the leaf is informational only).
| Citation | Kind | Title | Audit questions |
|---|---|---|---|
| Article 20 | Article | Governance | 4 |
| Article 21 | Article | Cybersecurity risk-management measures | 17 |
| Article 23 | Article | Reporting obligations | 11 |
| Article 26 | Article | Jurisdiction and territoriality | 1 |
| Article 27 | Article | Registry of entities | 8 |
| Article 32 | Article | Supervisory and enforcement measures in relation to essential entities | 1 |
The Compliance Matrix is the verification document — every paragraph in scope on one PDF. The audit checklist bundle is the per-question working document (42 questions, 5 artefact formats).