EN 
NL 
DE 
Super happy and proud we are that we have also obtained this licence. DigiTrust is now also allowed to perform CYRA audits. CYRA stands for Cyber Rating and was developed by TÜV Netherlands and Brainport region Eindhoven, among others, and is now managed by the CCV. The scheme is intended for organisations that look up to ISO27001 certification and are actually looking for a 'step-stone' growth model. Within CYRA, there are 4 levels; Entry, Basic, Intermediate and Advanced. And for each level, you can also have a maturity level (1, 2, or 3)
An organisation must first register with the CCV and can then apply via a portal. Then, through a self-assessment, the organisation can discover which level suits them. Through the system, they can also export a 'self-declaration'. If the organisation itself, or customers find the service risky, they can demand that the self-assessment be assessed impartially and objectively. So from now on, DigiTrust may do this, alongside TüV Netherlands.
For the upcoming NIS2 / CBW, this is a very useful tool for essential and important entities. After all, they must be able to demonstrate that suppliers have taken appropriate (and proportionate) measures. As claimants, they can determine, risk-based, whether they agree to a CYRA self-declaration prepared by the supplier or whether it should be assessed impartially and objectively. If you would like to know more about this, please contact us. [email protected]
