Belgium adopted its national cybersecurity strategy in 2013. The Centre for Cyber Security (Dutch and English) was established in 2014: http://www.ccb.belgium.be/en.
The national cyber security strategy defines 3 strategic objectives across eight action domains.
Obj. 1 - Ensure a safe and reliable cyberspace:
Obj. 2 - Provide optimal security and protection for critical infrastructures and governmental information systems.
Obj. 3 - Enable the development of national cyber security capabilities.
The 5 priorities defined in the 2014 Defence are: Defence Cyber Security Governance and Management Structure; investments in people, education and training; information and situational awareness; adequate material and infrastructure; collaboration and partnership.
An entire section is dedicated to cyber risk management, covering threats, vulnerabilities and impact. Lack of knowledge about different cyber threats is considered to pose the greatest risk. Management of expertise and knowledge of cyberspace are thus highlighted in the vision for national cybersecurity. To this end, it is important to allow flexible adjustment and training on changing threats. Participation in national and international exercises are part of the national strategy, including workshops and courses alongside awareness tools and information campaigns.
NATIONAL CYBERSECURITY STRATEGY - NIS Capacities
|Year of adoption||
2012 Belgium - Cyber Security Strategy in French and Dutch
|Updates and revisions||
A Strategy for Defence was published in 2014 (English)
In 2014 Belgium published its Strategy for Defence, where the main focus is on building up capacities to deal with the evolving threat landscape.
Belgium currently has 1 public response team and 1 private CERT.
CERT.be (Dutch: https://cert.be/nl.html); (French: https://cert.be/fr.html); (English: https://cert.be/) is the cyber emergency team of the Belgian federal government tasked with assisting private and public sector organisations in the event of a cyber incident, coordinating the handling of large-scale incidents, and information sharing through events and publications free of charge. It works with an international team of cyber-security experts and assists in setting up CERT activities.
CERT.be also incorporates Belnet CERT - research and education network to improve quality and level of service.
Proximus Cyber Security Incident Response Team, https://www.proximus.com/en/group/governance/regulatory-information#, (PXS-CSIRT *formerly known as BGC-CSIRT) - Commercial CERT for its ISP-customers and Belgacom-service customers, including affiliated organisations such as Telindus NL, UK, and LU. Certified in July 2016.
Policy requirement for an inventory of "systems" and the classification of data.
Policy requirement for security practices/requirements mapped against risk levels.
There is only partial implementation of a critical infrastructure protection (CIP) strategy.
There is also only partial coverage of mandatory reporting of cybersecurity incidents.
With regard to requirements for public and private procurement of cybersecurity solutions based on international accreditation or certification schemes, without additional local requirements.
There are several important gaps at the legal level. Missing elements include: no requirement to establish a written information security plan.
There is no requirment for an annual cyber-security audit; no requirement for a public report on cyber-security capacity for government and no requirement for an agency to have a chief information officer (CIO) or chief security officer (CSO).
Business and Public-private partnerships
The Cyber Security Coalition, https://www.cybersecuritycoalition.be/, is a unique partnership between players from the academic world, the public authorities and the private sector to join forces in the fight against cybercrime. Currently more than 50 key players from across these 3 sectors are active members contributing to the Coalition’s mission and objectives.
The Coalition aims at raising Cyber Security Capability on a national level in 4 main areas:
|Other capacity-building measures: research and education||The Belgian Cybercrime Centre of Excellence for Training, Research, and Education, https://www.b-ccentre.be/, was the first main coordination and collaboration platform for actors from Academia, Government, and Industry, involved in tackling cybercrime in Belgium. The B-CCENTRE project came to an end in November 2014, but the website still contains useful information on awareness and training.|
|Implementation & monitoring||Implementation and monitoring is understood to take place through national government.|
|Overall assessment/best practices||
Belgium has established a national cyber security strategy.
On a practical level, it helps citizens, schools, public organisation and businesses understand cyber risks with a suite of tools and guides.
|Date of last WISER analysis||July 2017|
Compliance with the GDPR and NIS Directive: Report a cyber incident
|Report a cyber incident to a national CERT/CSIRT||
Safe on line guide, including different types of cyber attacks.
In 2017, Thales launched a new cyber-security center in Belgium. The platform used by the facility enables the validation of the security level of a system's architecture and data; allows cyber-security specialists to be trained in a representative environment of real systems; and to support Belgian businesses in developing products incorporating cyber-security in their design.
Six organizations -- the Royal Military Academy, the Free University of Brussels, the Université Catholique de Louvain, the University of Namur, the Haute Ecole de Bruxelles and the Haute Ecole Libre de Bruxelles – have launched a university program in cyber-security. Thales said its Cyberlab will be used as part of that program.
LSEC is an Information security cluster leading a unique PAN European Private partnership that interacts with Public Institutions.
|Guidance and Updates||
CERT.be provides updates on cyber alerts, e.g. Samba targeting IoT and NAS devices
It also has a showcase of testimonials from organisations that have been helped in dealing with cyber incidents.
Dutch, French, English
|Date of last WISER analysis||July 2017|