ENSIA & Suwinet Audits

Municipalities in The Netherlands have great accountability when it comes to information security in general. Municipalities are responsible for taking adequate security measures in accordance with the Baseline Information Security Government (BIO). In addition to DigiD, there are two types of accountability reporting for municipalities in the Netherlands: ENSIA and Suwinet.

ENSIA AUDIT

ENSIA helps municipalities in accountability reporting. ENSIA stands for Eenduidige Normatiek Single Information Audit and requires one-off information provision and one-off IT audit. ENSIA aims to further professionalize the accountability process for information security at municipalities by bundling supervision and linking it to the Planning & Control cycle. ENSIA strives for an information security system that is set up effectively and efficiently.

Suwinet

Suwinet is a digital infrastructure developed by and to ensure that the Suwi parties (UWV, SVB and municipalities) can exchange data with each other for the performance of their statutory duties. As a user of Suwinet, a municipality is obliged to have an annual audit carried out on the basis of the contract with the UWV. This can only be done by a qualified RE auditor.

HOW WE SUPPORT YOU

Secura has extensive expertise on DigiD, ENSIA and Suwinet. Our service includes:

1. A pre-Audit for ENSIA and Suwinet to prepare you optimally.
2. The annual audit for ENSIA and Suwinet. The audit is performed by qualified RE auditors in accordance with NOREA Guideline 3000.

These services can be purchased separately or in combination with each other and with DigiD. It is precisely in the combination of these services that the impact of the audit process is limited and we can provide you an efficient service.