NIS2 keeps showing up in conversations, and one word is causing most of the panic: continuous.

Question 1: For NIS2, what’s a realistic, defensible way to handle “continuous” vendor and supplier monitoring without chasing 40 vendors by email every week?

Question 2: How are teams supposed to do “continuous” asset inventory when legacy systems and unknown dependencies make scanning risky?

Want to get your own questions answered? Head on over to https://blacksmithinfosec.com/ask