This is a compliance auditing tool for organizations that fall under the EU's NIS2 Directive, which mandates cybersecurity measures for critical infrastructure and digital service providers. It walks you through entity classification (are you even covered by NIS2?), audits your implementation of the 10 Article 21 risk management measures, and helps structure incident reports according to Article 23 requirements. You'd reach for this if you're building AI systems in sectors like energy, transport, health, or finance in the EU and need to document that you're meeting baseline security obligations. The MCP exposes tools for assessment workflows rather than live infrastructure monitoring.
claude mcp add --transport stdio csoai-org-nis2-compliance-mcp uvx nis2-compliance-mcp