Ensia is the single information audit unified norm. It seeks to streamline and bundle various existing information (security) audits to improve audit efficiency. ENSIA is a joint initiative of the Ministry of the Interior and Kingdom Relations, the former Ministry of Infrastructure and the Environment, the Ministry of Social Affairs and Employment, and the Association of Dutch Municipalities, VNG. Its aim is to establish the most effective and efficient information security accountability system possible, based on the Government Information security Baseline for Municipalities (BIG).
Implementation of ENSIA
ENSIA was implemented on 1 July 2017. ENSIA has streamlined and joined the accountability systematics for seven information registers: Key register Persons (BRP), Passport Execution Regulation (PUN), Digital personal identification (DigiD), Key register Addresses and Buildings (BAG), Key register Large-scale Topography (BGT), Key register Subsoil (BRO), and the Structure Employment and Income executive organization (Suwinet).
Accountability process principle
The horizontal accountability process, with the (municipal) council as horizontal supervisor, is the basic principle. It forms the basis for the vertical accountability process, to the various central supervisors of the abovementioned registers. The single information audit principle is applied to the accountability process: all information needed for the vertical accountability is also part of the horizontal accountability process.
In 2019, ENSIA is being further developed to prepare the accountability system for implementation of the Governmental Information security Baseline (BIO), which will replace the BIG.