Backed by RAS Institute · Vetted through EU procurement

Vetted for EU-grade cybersecurity.
Built for your NIS2 readiness.

rasidefense is the cybersecurity arm of RAS Institute — vetted through competitive EU procurement to hold three framework contracts with ENISA, the European Union Agency for Cybersecurity. We operationalise that institutional rigour with agentic AI, turning NIS2 mandates into continuous, evidence-based compliance.

Start your NIS2 readiness See our ENISA credentials
The cybersecurity arm of RAS Institute
3
framework contracts with ENISA
up to €1.26M
combined framework ceiling across the three
EU-grade
data protection — residency to match your region

Why this matters

We don't ask you to take our methodology on faith. We give you a benchmark.

To hold its three framework contracts with ENISA, the European Union Agency for Cybersecurity, our parent RAS Institute had to clear a competitive, multi-stage EU procurement — a process that tested its methodology, technical rigour, security vetting and data sovereignty against the standards the Union applies to its own cyber agency's suppliers.

Passing that bar is the credential. It isn't an endorsement, and it isn't a claim that ENISA works with us day to day — it is independent, documented proof that our methods withstood EU-grade scrutiny. We took the disciplines behind that vetting and built rasidefense: an agentic-AI platform for NIS2, run under expert oversight.

What we do

Agentic AI for scale. Vetted experts for judgement.

rasidefense pairs an agentic-AI platform with the EU-vetted expertise of RAS Institute's consortium — the AI does the continuous work, the experts stand behind the method.

Discover

Agentic Risk Discovery

AI agents continuously map your attack surface and tie every finding back to a specific NIS2 obligation. Not just scanning — interpreting risk the way an analyst would, around the clock.

Evidence

Automated Compliance & Reporting

Stop hand-writing compliance packs. Agents ingest your security signals and produce audit-ready documentation built to the rigorous standards our methodology was vetted against — so an assessor sees evidence, not assertions.

Respond

Incident-Response Orchestration

When something happens, agentic workflows guide your team through NIS2-aligned response steps and the Directive's strict reporting timelines — turning a legal obligation into a managed, repeatable process.

Assure

Expert-in-the-Loop Oversight

The human rigour behind the automation: penetration testing, operational exercises, studies and market monitoring — the disciplines for which our team cleared ENISA's procurement vetting. AI for scale; senior experts for judgement.

The credential

Three framework contracts with ENISA

Won through competitive EU procurement by RAS Institute and its "Consortium Cyber Defence" — a Bulgarian–Romanian expert team — across cybersecurity operations, studies and market monitoring.

Operational Support Unit (OSU)

Cybersecurity services for Bulgaria

Preparedness, penetration testing, operational exercises and an incident-response retainer with stand-by capacity.

Framework up to
€900k
Term
36 mo
Resilience of Critical Sectors (RoCS)

Large-scale cybersecurity studies

Tool-based professional services to design and execute large-scale cybersecurity studies across the EU internal market.

Framework up to
€120k
Term
36 mo
Market, Technology & Product Security (MTPS)

Cybersecurity market analysis & monitoring

Tool-based professional services to analyse and continuously monitor the EU cybersecurity market — technologies, products and trends.

Framework up to
€240k
Term
36 mo

All three are non-exclusive framework contracts — they make our consortium eligible to provide the services above and to compete for call-offs. Signed in 2026; values shown are framework ceilings, not guaranteed revenue or delivered work. rasidefense states this contractual relationship as fact only and does not imply that ENISA endorses, sponsors or partners with the rasidefense brand.

Why us

Institutional credibility, commercial focus.

  • EU-procurement vettedOur consortium passed the technical, financial and security vetting to hold three ENISA frameworks — an independent benchmark, not a self-declared one.
  • Methodology-aligned, not guessworkWe apply the technical guidelines and analytical frameworks our team was vetted to provide for the EU's own cyber agency.
  • Agentic AI, research-ledNot a thin wrapper over an LLM — RAS Institute's analytical heritage makes our agents' decisions consistent and defensible.
  • Data protection by designEU-grade, GDPR-aligned protection — the discipline that governs our ENISA contracts — with data residency to match your jurisdiction.
  • Full spectrum under one roofDiscover, evidence, respond and assure — instead of stitching together point tools and point vendors.
  • EU credentials, delivered wherever you operateA senior-led consortium serving clients across the EU, the UK and beyond — to a single EU-grade standard.

NIS2 & equivalent regimes

NIS2 turns cybersecurity into a board-level legal duty.

The NIS2 Directive expands who is in scope and raises the bar on risk management, incident reporting and accountability — with management bodies personally responsible. We apply the same EU-grade rigour to equivalent regimes — including the UK's NIS Regulations 2018 and the incoming Cyber Security and Resilience Bill — making compliance defensible to regulators, customers and your board, wherever you operate.

1

Assess

AI-driven gap analysis against NIS2 obligations, grounded in an EU-vetted methodology.

2

Test

Penetration testing and exercises — with expert oversight — to prove and harden your defences.

3

Respond

Agentic workflows that orchestrate incident response within NIS2's legal reporting timelines.

4

Sustain

Continuous monitoring and audit-ready evidence so compliance holds as your risk evolves.

About

The cybersecurity arm of RAS Institute.

RAS Institute — the Research, Analysis and Strategy Institute, based in Sofia — is a consultancy with a track record of success in competitive EU procurement. rasidefense is its cybersecurity arm: a way to bring that institutional credibility to organisations facing NIS2 and equivalent regimes — across the EU, the UK and beyond.

The ENISA framework contracts are held by RAS Institute and its consortium partner, CT Defense SRL (Cluj-Napoca, Romania), together forming "Consortium Cyber Defence." Our credential is European; our delivery isn't — rasidefense brings the same EU-vetted rigour, operationalised with agentic AI, to your cybersecurity and compliance wherever you operate.

Get in touch

Make your NIS2 compliance defensible.

Tell us where you are on the journey — we'll show you the fastest credible route to readiness, built on an EU-vetted methodology and agentic AI.

Email us