Question 1

Does SentriKat meet NIS2 Article 21 vulnerability handling requirements?

Accepted Answer

Yes. SentriKat provides structured, auditable vulnerability handling: automated discovery via agents, severity scoring from multiple sources (NVD, CVE.org, ENISA EUVD), remediation tracking with deadlines, and NIS2-specific compliance reports with executive summaries for auditors and board presentations.

Question 2

Can SentriKat run 100% on-premises in the EU?

Accepted Answer

Yes. SentriKat is fully self-hosted via Docker Compose. Your vulnerability data, software inventories, and scan results never leave your infrastructure. Air-gapped deployments are supported with offline license activation. The only external call is a lightweight license heartbeat — no customer data is transmitted.

Question 3

Does SentriKat use the ENISA European Vulnerability Database (EUVD)?

Accepted Answer

Yes. SentriKat natively integrates ENISA EUVD for exploited vulnerability tracking and CVSS score enrichment. Combined with CISA KEV, NVD, and CVE.org, this provides multi-source intelligence that doesn't depend solely on any single US or EU database.

Question 4

What is the difference between SentriKat and Tenable or Qualys for NIS2 compliance?

Accepted Answer

SentriKat is on-premises (EU data sovereignty), integrates ENISA EUVD natively, generates NIS2-specific compliance reports, and costs €2,499/year for everything included. Enterprise scanners require cloud tenancy, start at $10,000+/module, and don't include EU-specific vulnerability databases or NIS2 report templates.

Source	Purpose	EU Relevance
CISA KEV	Known exploited vulnerabilities	US-maintained, globally adopted
ENISA EUVD	EU exploited vulnerabilities + CVSS	NIS2 Article 12 mandated
NVD (NIST)	Primary CVSS scoring	Industry standard baseline
CVE.org + Vulnrichment	Secondary CVSS, CNA-provided scores	CISA ADP fallback
FIRST EPSS	Exploitation probability scoring	Prioritization model
OSV.dev	Open-source vulnerability data	Vendor advisory aggregation

Capability	SentriKat	Enterprise Scanners
Deployment	100% on-premises	Cloud-first (US-hosted)
ENISA EUVD	Native integration	Not available
CVSS sources	3 sources + auto-fallback	NVD only
NIS2 compliance reports	Built-in, Article 21	Generic / add-on module
Data sovereignty	Full EU control	US Cloud Act exposure
Source code audit	Available	Proprietary / closed
Pricing	€2,499/yr all-inclusive	$10,000+/module/yr

NIS2 vulnerability management
built for European organizations

What NIS2 Article 21 requires — and how SentriKat delivers

NIS2 Requirement

SentriKat Delivers

Why EU organizations choose SentriKat

EU Data Sovereignty

ENISA EUVD Integration

NIS2 Compliance Reports

Multi-source vulnerability intelligence

SentriKat vs. enterprise scanners for NIS2

EU and international compliance frameworks

Ready for NIS2 compliance?

NIS2 vulnerability management built for European organizations