What does the new NEN 7510:2024 mean for certificate holders?
Information security remains a top priority in healthcare. With the 2024 revision of NEN 7510, there is now a standard that is better aligned with international frameworks such as ISO 27001. But what does this mean in practice for healthcare organizations that are certified or aiming for certification? Rutger Fugers, scheme manager at Kiwa, explains the key changes, points of attention and benefits of the revised standard.
How do you look back on the recent developments around NEN 7510 as a scheme manager?
‘With this revision, the standard is now more closely aligned with international frameworks such as ISO 27001. This makes it easier for organizations to set up their information security effectively and efficiently. We see more and more organizations taking this seriously and this update helps them approach it in a practical and future-proof way.’
What should certificate holders pay attention to when meeting NEN 7510:2024?
‘Certificate holders should mainly be aware of the revised structure and terminology of the standard. In addition, there are new requirements in areas such as risk assessment, communication with stakeholders and continuous improvement. It is important to align internal processes with these changes and to properly involve employees. This avoids surprises and ensures that everyone understands what is expected of them.’
How does NEN 7510 now align with the revised ISO 27001?
‘NEN 7510:2024 is now much better aligned with ISO 27001:2022, both in structure and in content. For organizations working with both standards, this means less overlap and more clarity. My advice: view this harmonization as an opportunity to set up your Information Security Management System (ISMS) more efficiently. By streamlining processes, you can avoid duplication and make managing information security much more straightforward.’
What is the best moment for certificate holders to transition to NEN 7510:2024?
‘The ideal moment is during your next recertification. That way, the new standard can be incorporated into the existing audit process without additional effort. Do keep the transition period in mind: the transition must be completed before 20 February 2027, so don’t wait too long! Preparing in good time prevents unnecessary pressure and allows you to properly integrate the new requirements. At Kiwa, we are ready to support organizations in making the transition smooth and clear.’
How does Kiwa support organizations during this transition?
‘Kiwa offers various forms of support to help organizations transition to NEN 7510:2024, such as training sessions, whitepapers and practical documentation. On our website, you can also find an overview of the transition timeline, giving organizations clear insight into how to approach the process in a structured way. Our auditors are already trained on the new standard and are conducting audits against the revised requirements. In this way, we contribute to a careful and transparent certification process.’
