Ad van 't Hoenderdal MSc
IT auditor
By shaping an information security policy on the basis of (inter)national standards, or standards framework, its reliability is recognized. It is possible that this is a requirement for your organization from legislation or a customer. We can support you in the implementation, audit or maintenance of various standards frameworks.
Standards frameworks and guidelines:
- Network and Information Security Directive (NIS2).
- ISO 27001
- NEN 7510
- ISAE 3402/3000
- Government Information Security Baseline (BIO).
NIS 2 (Network and Information Security Directive).
The NIS2 is a directive that sets rules for organizations in the European Union. This directive will ensure that all organizations that perform a vital function in society have a high level of cybersecurity and are thereby protected from threats such as hackers or malware.
You meet the required standard by setting up your information security policy according to the standards of the NIS2. We support you in establishing and maintaining your policy.
NIS2ISO 27001
ISO/IEC 27001 is the internationally recognized standard for information security. Organizations that have a ISO 27001 certification achieve, show that they are sufficiently committed to protecting company information. More and more companies have this certification, often because it is a requirement from new customers.
You will receive certification by implementing and maintaining an Information Security Management System (ISMS) according to the standards of ISO 27001. We support you in implementing, auditing and maintaining your ISMS.
ISO 27001NEN 7510
The NEN 7510 is the standard for information security in healthcare. Organizations that comply with this standard demonstrate that the confidentiality of patient information is properly safeguarded. NEN 7510 certification is not required by law, but it is the standard for organizations that process medical data. It is often made a requirement from other parties.
You receive a certificate by implementing and maintaining an Information Security Management System (ISMS) according to the standards of NEN 7510. We support you in implementing, auditing and maintaining your ISMS.
NEN 7510ISAE 3402/3000
ISAE stands for International Standard on Assurance Engagements. ISAE standards are designed to ensure consistency and quality of services. For example, ISAE 3402 specifies that outsourcing services must meet quality requirements. ISAE 3000 is applied to non-financial assurance engagements, such as a sustainability report, to ensure their reliability.
You will receive certification by implementing and maintaining an Information Security Management System (ISMS) according to ISAE standards. We support you in implementing, auditing and maintaining your ISMS.
ISAE 3402 / 3000Government Information Security Baseline (BIO).
The Baseline Information Security Government (BIO) is the standard for all levels of government. By setting up your information security policy according to this standard, you show that your organization works according to the legal standards. The BIO is mandatory for government agencies and organizations that are part of the digital traffic with the national government.
You meet the set standard by setting up an Information Security Management System (ISMS) according to the standards of the Baseline Information Security Government. We support you in implementing, auditing and maintaining your ISMS.
BIOFree Cyber Security Scan
Do you know you need to do something about information security but don't know where to start? Then do our Cyber Security Scan. Setting up a policy and measures to prevent risks varies a lot from organization to organization. With our scan we map out the risks and threats to your organization.
Cyber Security Scan