KAM Certifications is now Fendix
ISAE 3402

Provide confidence with an ISAE 3402 certification

Provide confidence with an ISAE 3402 certification
Deze organisaties hebben we geholpen
No items found.

This includes

ISAE 3402 is a global standard used by companies when they outsource their financial information or IT operations to another organization. For example, when a company outsources its financial administration to another service provider or when a financial institution outsources its IT infrastructure to an external provider. With an ISAE 3402 you show that you properly control and protect the (financial) information in outsourced activities.

Why ISAE 3402

  • Your customers will increasingly ask for it
  • External parties or clients may/demand that your outsourced processes be audited when you cannot demonstrate this with a certificate
  • You stand out from your competitors
  • You show that your organization complies with legal obligations, such as the AVG, Financial Supervision Act (Wft), Pension Act (PW) and DNB regulations

What to expect from the implementation process

You can compile the control framework of the ISAE 3402 statement yourself. However, this requires knowledge of the standard. In fact, it is common to include a number of components such as:

  • Description of the organization and risk management framework
  • Control matrix with financial and general IT Controls
  • Description of management objectives and associated management measures
  • Management objectives aligned with the user organization's financial statements
  • Measures to ensure compliance with ISAE 3402 reporting criteria

Implementing the ISAE 3402 statement is quite a challenge. Fortunately, our experts can help you with that. Because of our experience in information security and implementing management systems, we can guide your organization efficiently. Moreover, we partner with all Certifying Bodies (CIs) in the Netherlands. This ensures direct and fast communication to support you even better before, during and after the process. See also our about us page.

Frequently Asked Questions

What are the costs for ISAE 3402 implementation?
What is the difference between ISAE 3402 and SOC 2?
What is the difference between ISAE 3402 type 1 and type 2?
When to combine ISO 27001 and ISAE 3402?
What is the difference between ISAE 3402 and SOC 1
What is an IT auditor (RE)?

Why Fendix?

Pragmatic and flexible
Remote or on-site? Calling, emailing, or appending? We think with you and adapt effortlessly.
Innovative and entrepreneurial
We use the latest tools and methods to support you faster and smarter.
All-round knowledge partner
With our broad services and network of experts, we are your one-stop shop for information security and privacy.
Lasting relationships
We invest in long-term partnerships. For us, you are a valuable partner with whom we grow together.
More about us

This is how we proceed

GAP analysis
01
Risk analysis
02
Management System
03
Awareness
04
Internal audit + management review
05
External audit
06
Maintenance
07

Getting started with ISAE 3402

Want to get started with ISAE 3402? We have several services for you. Such as a GAP analysis for insight into what you need to do prior to your implementation or a guided or de-risking implementation process.

Accompanying implementation process

In the guided implementation process, we help you do the implementation yourself using our templates.
view service

GAP analysis

De GAP-analyse geeft een duidelijk overzicht welke stappen jouw organisatie nog moet nemen.
view service

Schedule a no-obligation telephone intake today

We would be happy to explain what the ISAE 3402 standard entails and what it means for your organization, including the steps required for a streamlined implementation.
What to expect.
1
Schedule a no-obligation introduction
2 minutes
2
Free introduction
30 minutes
3
Insight into implementation process
Receipt of white paper
4
Customized proposal
Within 1 day
Your data
Additional Information
We always call afterward to provide a price estimate.
Thank you for your quote request!
We will contact you within one business day!
Oops, something seems to have gone wrong. Please check your information and try again.

Schedule a no-obligation telephone intake today

We would be happy to explain what the ISAE 3402 standard entails and what it means for your organization, including the steps required for a streamlined implementation.
What to expect.
1
Schedule a no-obligation introduction
2 minutes
2
Free introduction
30 minutes
3
Insight into implementation process
Receipt of white paper
4
Customized proposal
Within 1 day

We are a partner of