<img height="1" width="1" style="display:none" alt="fbpx" src="https://www.facebook.com/tr?id=1214895146390980&amp;ev=PageView&amp;noscript=1">

FAQ

A number of (standard) risk sets are currently included in Perium. New risks are added regularly.

Available (standard) risk sets:

  1. Information Security MAPGOOD
  2. Information security NoREa (professional organization for IT auditors)
  3. Privacy CIP (Center for Information Security and Privacy Protection).
  4. ARBO
  5. Sustainability
  6. Artificial Intelligence
  7. Strategy
  8. Financial
  9. Procurement
  10. Operational risks
  11. Project
  12. Hiring, labor and outsourcing work (Under the SNA Quality Mark)
  13. Self-defined risks


These risks are linked to the relevant control measures.

Perium also includes the most known threats and vulnerabilities based on the OWASP and NIST, among others, and linked to the risk sets.

Currently, the following most common norms and standards are included in Perium. New norms and standards are added regularly.

Managementsystemen:

  1. HKZ 123 2015+A1_2019 General Organizational Part (Quality Management)
  2. ISO27001 2022 English (Information security)
  3. ISO27001 2022 Dutch (Information security)
  4. ISO27001 2017+A11 2020 Dutch (Information security)
  5. ISO9001 2015 Dutch (Quality Management)
  6. ISO50001 2018 English (Energy management)
  7. ISO22301 2019+CNL1 2020 Dutch (Continuity management)
  8. ISO42001 2023 (Artificial Intelligence)
  9. CSR Performance Ladder


Beheersmaatregelen
:

  1. Baseline Information Security Housing Corporation (BIC) 3.0
  2. Government Information Security Baseline (BIO) 2019
  3. BC 5701 (Privacy)
  4. CMMI (Information Security)
  5. CIP Privacy Baseline
  6. CIS Critical Security Controls
  7. Cloud Control Matrix 4.0.5 2022
  8. DigiD 2.0 and 3.0
  9. DNB Good Practice IB 2019
  10. DORA
  11. E-Health Assessment Framework IGJ 2018
  12. CSRD/ESRS
  13. HKZ 146 2015+A1_2018+C12021(Quality of Care )
  14. IBP Education (Information Security)
  15. ICT Security Guidelines for Web Applications 2015
  16. ISAE 3402 (IT management processes).
  17. ISO 27002 2017 and 2022 (Information security)
  18. ISO 27036 (Supplier Management)
  19. ISO 27701 2019 (Privacy)
  20. ISO42001 2023 (Artificial Intelligence)
  21. ISQM Quality assurance services 2022
  22. ITGC Horizontal Monitoring 4.0 2021
  23. NATIONAL CYBER SECURITY CENTER (NETHERLANDS) Handbook of Cybersecurity Measures.
  24. NEN 4400-1 (SNA quality mark)
  25. NEN 7510 2017 (Information Security in Healthcare)
  26. NEN 7512 2015 (Electronic communications)
  27. NEN 7513 2018 (Logging)
  28. NIS2 Directive 2022 (preliminary version).
  29. NIST AI Risk Management Framework 1.0 2023
  30. NIST Cybersecurity Framework 1.1 2018
  31. NOREA Privacy Control framework
  32. NTA 7516 2019 (Secure mailing)
  33. NVZ Code of Conduct (Information Security).
  34. PCI-DSS 4.0 2022 (Information Security Payment cards)
  35. RI&E (occupational health and safety)
  36. SBCA (Occupational Safety and Health Administration)
  37. SOC2 (Information security and privacy)
  38. Suwinet 2022 (Government Information Security)
  39. VCA (Safety, health and environment)
  40. Police Data Act 2019 (Privacy)
  41. ZKN Hallmark (Quality Independent Clinics).
  42. Own defined management measures

Within Perium, the following is possible. Perium is highly scalable and not everything is mandatory. You can start small and continue to grow in line with your ambitions.

    1. Threat level (optional)
    2. Vulnerability level (optional)
    3. Management system requirement assessments (optional)
    4. Risk assessments (optional)
    5. Management measure assessments
    6. Action Plans
    7. Regular tasks (optional)

Yes that is possible. An environment or instance can be created per unit. You can easily switch between units and do not have to log in every time.

Yes, all assessment results are conveniently placed under each other. When creating a new assessment, you can use the previous assessment results. This way you can only make changes.

Perium's dashboard provides insight into 3 questions:

  1. Process wise; are we doing the right things in time such as naming ownership and conducting assessments and action plans?
  2. Performance; with a risk heatmap you have instant insight into risk scores. With a bar chart and web chart, you have instant insight into the maturity of control measures.
  3. User actions; as a user, you can see which actions are still open.

In addition, Perium offers many lists where you can use filters and sorting to have almost any insight. You can also make a download of the management measures to Excel.

We offer the use of Perium at a fixed rate per month. The rates start at € 149 per month and depend, among other things, on the size of the organization and the desired usage. This is a so-called all-in rate. You have access to all standards, templates and functionality of Perium.

Depending on the standard, organizations may have to purchase a usage license from the issuing authority.

Want to know more about this? Then contact us at 050-2111729 or send your question to service@perium.nl.

You can get Perium up and running easily and quickly by using our onboarding wizard. Within 30 minutes you will be 'up and running'. In addition, we provide an initial user instruction of about an hour and a half so you can get started. If desired, we provide a 3-hour user training on-site for €499. There are no additional implementation costs.

We want to make the world a safer place and to set a good example in doing so. Our customers and partners should expect the same from us. Our platform is developed in line with the OWASP Application Security Standard. In addition, we perform a pen test on our platform at least annually. Perium itself is ISO27001 certified where we have not excluded anything in the scope. Practice what you preach!

Perium is an approachable and intuitive platform. You can quickly get started yourself with a management system, tasks, risks, control measures, links and templates already prepared for you. We strive for customer self-reliance where other organization often provide consultants to work with a solution.

Perium is scalable to fit your maturity level, complexity, size and ambitions. Perium grows with you instead of the tool dictating to your organization how to do what.

Explanatory texts are included within Perium. Click on the 'i' and explanations appear. In addition, the Help page provides many explanations. Also available through the Help page are videos with detailed explanations of Perium.

Can't figure it out? Please contact us at 050-2111729 or send your question to service@perium.nl

No. We have built in a mail function that sends an email based on ownership and established dates. This monitors that the right people get the right triggers in time for the right actions. For example, if you own a risk, you get an email with a link to that risk in Perium 2 weeks before a risk assessment is due.