News

To implement AI safely and responsibly, international standards such as ISO 27001 and ISO 42001 play a crucial role. While ISO 27001 focuses on data protection, an AI management system (AIMS) under ISO 42001 is designed to manage and optimize the use of AI within an organization. By combining ISO 27001 and ISO 42001, businesses can develop a stronger and more proactive approach to information security.

Cybersecurity has been a passion of mine for years. My journey in this field began out of curiosity, leading me to specialize in web penetration testing. Since joining Kiwa, my focus has shifted to IoT security, with an emphasis on testing against standards like ETSI EN 303645. One topic that consistently fascinates me is input validation—an area where web penetration testing and IoT security assessments often intersect.

To keep quality standards relevant and up-to-date, they are periodically revised. Following the revision of ISO 27001 in 2022, a new version of the NEN 7510 has recently been published. Below, we highlight some of the key changes in the NEN 7510:2024.

I am Jelte Derksen, an ethical hacker working at Kiwa NL. I got into the field of ethical hacking after initially pursuing studies that were, frankly, a terrible fit. Consequently, I pivoted into IT as a SCADA administrator. Once I had a solid grasp of the basics, I transitioned into IoT development and Data Engineering before landing in the field of security.

Getting your product's cybersecurity in order can be very complicated. But there are some things that are relatively easy to organize and help you to quickly improve your product's cybersecurity.

By conducting testing and certification projects, we learn a lot, including which aspects contribute to a fast turnaround time of projects, but also which non-conformities are relatively common. Therefore, we made an overview of the most common non-conformities. Make sure they don’t happen to you!