ISMS Copilot
ЗКС

ЗКС Copilot

Navigate Bulgaria's cybersecurity law with clarity and confidence

Démarrer l'essai gratuitVoir en action

Ce que le ЗКС Copilot peut faire

Identify whether your organisation qualifies as a съществен or важен субект

Map your sector against Приложение 1 and Приложение 2 of ЗКС

Understand the 24-hour, 72-hour, and 30-day notification chain under чл. 23

Navigate which competent authority applies to your sector under чл. 16

Interpret sanction thresholds and personal liability rules under чл. 29

Draft a risk management measures overview aligned with глава II б obligations

About ЗКС Copilot

The ЗКС Copilot helps organisations subject to the Bulgarian Закон за киберсигурност — in its consolidated form as amended by ДВ бр. 17/2026 — understand their obligations under Bulgaria's transposition of NIS 2 Directive (EU) 2022/2555. It covers entity classification, risk management measures, incident notification timelines, and the sanctions regime under глава трета.

À qui c'est destiné

NIS 2

Parent EU directive — transposed into Bulgaria's national law.

NIS 2 Germany

Sister national transposition of NIS 2.

NIS 2 Belgium

Sister national transposition of NIS 2.

Questions fréquemment posées

What is ЗКС?

Закон за киберсигурност (ЗКС) is Bulgaria's national cybersecurity law, originally enacted in 2018 and most recently amended by the law published in Държавен вестник бр. 17/2026, which transposes NIS 2 Directive (EU) 2022/2555 into Bulgarian law. The amended text expanded the scope to 18 sectors across Приложение 1 and Приложение 2 and introduced new chapters on entity registration, risk management obligations, and supervisory powers.

How does the ЗКС Copilot help?

The Copilot helps you work through the ЗКС text systematically — from understanding entity classification under чл. 4а through to the incident notification requirements of чл. 23 and the sanctions framework of чл. 28–31. It draws on the consolidated ЗКС in the ДВ 17/2026 redaction, so the guidance reflects the current obligations rather than the pre-amendment NIS 1 regime.

Who is responsible for supervising entities under ЗКС?

Supervision is distributed: Министерството на електронното управление (МЕУ) is the competent authority for administrative bodies and entities under чл. 4, т. 7–8, while the Министерски съвет designates sector-specific competent authorities under чл. 16 for sectors in Приложение 1 and Приложение 2 where no special law already assigns that role. НЕРИКС (Govcert.bg) acts as the national CSIRT and is the primary recipient of incident notifications.

Prêt à optimiser votre travail de conformité ?

Conçu pour la rapidité, la précision et des livrables prêts pour l'audit.

Essayer ISMS Copilot 2.0