Information Security and Certification
Cyberattacks or hacks can jeopardise business continuity, resulting in financial problems, reputational damage and loss of goodwill. Legislation and regulations (such as the GDPR) demand an integrated approach to IT security.
At the same time, data and communication technology solutions are playing an increasingly important role in our professional and personal lives and have even found their way into everyday household appliances such as refrigerators, thermostats and lighting. That’s where Kiwa’s cyber security experts come in.
IT security at Kiwa is focused around protecting information and data in systems and organisations. Kiwa provides the following IT security related services:
ISAE 3402: Demonstrable IT risk assurance
The ISAE 3402 is an assurance report for organisations that want to demonstrate they are in control over their IT and that their processes are arranged and executed properly. Kiwa has years of experience in information security and certification in different industries
Demonstrating internal control: ISAE and SOC reports enhance customer confidence
Organizations are increasingly requesting suppliers to provide an ISAE or SOC report. Especially now that more organizations are handling privacy-sensitive customer information, demonstrable focus on information security and cybersecurity is becoming increasingly important. Kiwa has years of experience in ISAE and SOC reporting and can conduct the audit for you.
ISO 22301 Business continuity management systems
ISO 22301 Business continuity management system with Kiwa: Prepare for disaster, disaster, and accident-related business disruptions.
ISO 27001 certification: protect your business’ data
Working in accordance with the ISO 27001 standard helps you take a structured approach to information security. Kiwa’s experts have everything you need to prepare your organisation for ISO 27001 certification. We have extensive experience with this standard, from developing a step-by-step information security plan to implementing a full Information Security Management System (ISMS).
ISO 27017 Information security for cloud services
Are you a provider or customer of cloud services? With certification against the international standard ISO 27017:21 you can demonstrate your stakeholders that you are aware of the security risks of storing and processing information in the cloud and that you have taken measures to minimise these risks.
ISO 27701 Certification Privacy Management System
ISO/IEC 27701 – an extension of the ISO 27001 standard – contains specific management measures for the protection of privacy-sensitive information. Based on ISO 27701, organisations that already work with an Information Security Management System can upgrade their system to a Privacy Information Management System.
ISO 37001 Anti-Bribery Management (ABMS)
The international standard ISO 37001 helps organizations reduce the risks and costs associated with bribery, corruption, etc. Kiwa can assist your organization in combating bribery and promoting an ethical corporate culture through ISO 37001 certification. With an ISO 37001 certificate, you demonstrate compliance with applicable laws and regulations.
ETSI EN 303 645: security of IoT consumer electronics
Refrigerators, lighting, TV’s, smoke detectors, toys, fitness trackers... An ever-increasing number of everyday electronic consumer products is connected to the internet. These ‘smart’ devices make our lives more pleasant and often easier, but they also entail security risks.
IEC 62443 certification: Cyber Security for Industrial Automation & Control Systems (IACS)
Digitalization and the Internet of Things (IoT) offer great opportunities for manufacturing industries. However, if not properly secured they can cause vulnerability, leading to cybercrime and attacks by hackers. This can seriously damage daily operations and business continuity.
Remote Access for Remote Services (RARS) Certification Scheme
By taking the recent cybersecurity trends into account, Kiwa developed the Remote Access for Remote Services (RARS) scheme, also known as K21048. The RARS scheme is a collection of assessments set up by Kiwa that focusses on different types of systems that are remotely accessible.
NEN 7510 certification: take care of your confidential information
Kiwa was the first in the Netherlands to have a NEN 7510 accreditation and has a great deal of experience with regard to the NEN 7510 certification. Look here for more info!
ISO 13485 Medical Devices
ISO 13485 is the medical device industry's quality management system (QMS) standard. The scheme specifies the requirements for a quality management system for medical devices.
In control of sensitive information with Kiwa's GDPR certificate
Do you want to demonstrate that your business operations comply with the General Data Protection Regulation (GDPR)? With a GDPR audit by Kiwa and the resulting GDPR certificate, you can show that you are in control when it comes to protecting sensitive privacy information.
Penetration Tests and Ethical Hacking Services
A penetration test, also known as a pentest or ethical hacking, is an authorised simulated cyberattack on an IT/ OT system, performed to ultimately evaluate the cybersecurity of that digital system. At Kiwa we perform tailormade pentests of which the results provide valuable insights to the owners of the tested system.
Discover more:
- IT assurance reporting increasingly popular, but what exactly is it?
- ‘ISO 27001 certification solid basis for information security’
- Video: Combined certification ISO 9001, 14001 and 27001 at T-Mobile
- Clientcase Pulse: 'ISO 27001 certification increased our data security awareness'
- Hartis telecare receives first Kiwa ISO/IEC 27701 certification