ISAE 3000 is the international standard for conducting audits to assess processes and systems. Soll-IT operates in accordance with ISAE 3000 guidelines, and can demonstrate in an in control statement that your organisation’s internal management processes are conducted in accordance with the specifications.
If you require an audit and advice on the quality of the activities outsourced to you, we can conduct an ISAE 3402/SOC1 audit. The subsequent report will state the extent to which you satisfy quality requirements and are thus ‘in control’ of the activities outsourced to you.
Pre-audit ISO 27001
For information security audits, we use the ISO 27001 standard. This international code uses risk analysis to determine which measures in ISO 27001 are applicable to your organisation. During the audit, we assess whether you comply with the standard, or what measures you otherwise need to take to meet them.
The DigiD audit allows you to demonstrate that your systems meet the DigiD security requirements and that within your organisation, confidential information is protected. A Soll-IT certified Registered EDP Auditor checks for any vulnerabilities in your systems and whether processes meet standards. These checks also include ethical hacking; a penetration test that exposes any risks in your system and identifies any measures required. If your systems successfully pass the DigiD audit after this, you may use the DigiD link for another year.
ENSIA (Uniform Standard for Single Information Audit) aims to further professionalise the accountability process for information security at municipalities by bundling the supervision and connecting it to the municipal Planning & Control cycle. As a result, the municipal council has a better overview of the state of affairs of information security and can also better manage it. Municipalities must annually account for the state of affairs regarding information security. Through a self-evaluation, municipalities provide insight into the status of information security. Soll-IT supports municipalities to secure ENSIA by carrying out an ENSIA audit.
If you would like to have your IT systems or processes certified, you can request that Soll-IT carry out the required audit. In addition to assessing the status of your systems and processes, we can also give you specific advice to help you obtain the certificate or assurance report. Would you like to contact us for more information or an introductory chat, free of obligation?