Belgium (BE)

Belgium adopted its national cybersecurity strategy in 2013. In 2014 Belgium published its Strategy for Defence, where the main focus is on building up capacities to deal with the evolving threat landscape.

The strategy defines 3 strategic objectives across eight action domains.

Obj. 1 - Ensure a safe and reliable cyberspace:

Obj. 2 - Provide optimal security and protection for critical infrastructures and governmental information systems.

Obj. 3 - Enable the development of national cyber security capabilities.

The 5 priorities defined in the 2014 Defence are: Defence Cyber Security Governance and Management Structure; investments in people, education and training; information and situational awareness; adequate material and infrastructure; collaboration and partnership.

An entire section is dedicated to cyber risk management, covering threats, vulnerabilities and impact. Lack of knowledge about different cyber threats is considered to pose the greatest risk. Management of expertise and knowledge of cyberspace are thus highlighted in the vision for national cybersecurity. To this end, it is important to allow flexible adjustment and training on changing threats. Participation in national and international exercises are part of the national strategy, including workshops and courses alongside awareness tools and information campaigns.

 

NATIONAL CYBERSECURITY STRATEGY - NIS Capacities

 

Year of adoption

2012 Belgium - Cyber Security Strategy in French and Dutch

Updates and revisions

A Strategy for Defence was published in 2014 (English)

ccdcoe.org/sites/default/files/strategy/Belgian%20Defence%20Cyber%20Security%20Strategy.pdf.

The Centre for Cyber Security (Dutch and English) was established in 2014: http://www.ccb.belgium.be/en.

Implementation and Monitoring Implementation and monitoring is understood to take place through national government.
Operational-building capacities
  • National computer emergency response team (CERT)/computer security emergency response team established in 2008.
  • A national competent authority for network and information security (NIS) established.
  • Incident reporting platform for collecting cyber-security incident data available.
  • Conducting of national cyber security exercises.

Belgium currently has 1 public response team and 1 private CERT.

CERT.be (Dutch: https://cert.be/nl.html); (French: https://cert.be/fr.html); (English: https://cert.be/) is the cyber emergency team of the Belgian federal government tasked with assisting private and public sector organisations in the event of a cyber incident, coordinating the handling of large-scale incidents, and information sharing through events and publications free of charge. It works with an international team of cyber-security experts and assists in setting up CERT activities.

CERT.be also incorporates Belnet CERT - research and education network to improve quality and level of service.

Proximus Cyber Security Incident Response Team, https://www.proximus.com/en/group/governance/regulatory-information#, (PXS-CSIRT *formerly known as BGC-CSIRT) - Commercial CERT for its ISP-customers and Belgacom-service customers, including affiliated organisations such as Telindus NL, UK, and LU. Certified in July 2016.

Legal conditions

Policy requirement for an inventory of "systems" and the classification of data.

Policy requirement for security practices/requirements mapped against risk levels.

There is only partial implementation of a critical infrastructure protection (CIP) strategy. 

There is also only partial coverage of mandatory reporting of cybersecurity incidents.

With regard to requirements for public and private procurement of cybersecurity solutions based on international accreditation or certification schemes, without additional local requirements.

There are several important gaps at the legal level. Missing elements include: no requirement to establish a written information security plan.

There is no requirment for an annual cyber-security audit; no requirement for a public report on cyber-security capacity for government and no requirement for an agency to have a chief information officer (CIO) or chief security officer (CSO). 

Business and Public-private partnerships

The Cyber Security Coalitionhttps://www.cybersecuritycoalition.be/, is a unique partnership between players from the academic world, the public authorities and the private sector to join forces in the fight against cybercrime. Currently more than 50 key players from across these 3 sectors are active members contributing to the Coalition’s mission and objectives.

The Coalition aims at raising Cyber Security Capability on a national level in 4 main areas:

  1. Experience sharing
  2. Operational collaboration
  3. Policies & recommendations
  4. Awareness raising

The Centre for Cyber Security Belgium provides practical advice and guidance in Dutch, http://ccb.belgium.be/nl, French, http://ccb.belgium.be/fr, and English, http://www.ccb.belgium.be/en.

Other capacity-building measures: research and education The Belgian Cybercrime Centre of Excellence for Training, Research, and Educationhttps://www.b-ccentre.be/,  was the first main coordination and collaboration platform for actors from Academia, Government, and Industry, involved in tackling cybercrime in Belgium. The B-CCENTRE project came to an end in November 2014, but the website still contains useful information on awareness and training.
Date of last WISER analysis July 2017

 

Compliance with the GDPR and NIS Directive: Report a cyber incident

Report a cyber incident to a national CERT/CSIRT

CERT.be

PXS-CSIRT

Best practices:

Safe on line guide, including different types of cyber attacks.

In 2017, Thales launched a new cyber-security center in Belgium. The platform used by the facility enables the validation of the security level of a system's architecture and data; allows cyber-security specialists to be trained in a representative environment of real systems; and to support Belgian businesses in developing products incorporating cyber-security in their design.

Six organizations -- the Royal Military Academy, the Free University of Brussels, the Université Catholique de Louvain, the University of Namur, the Haute Ecole de Bruxelles and the Haute Ecole Libre de Bruxelles – have launched a university program in cyber-security. Thales said its Cyberlab will be used as part of that program.

LSEC is an Information security cluster leading a unique PAN European Private partnership that interacts with Public Institutions.
LSEC activities aim to raise cyber security awareness, support innovation and competitiveness of the European IT- Security market and promote the visibility of its members.
With operations in the Netherlands, Belgium, Luxembourg and the UK, LSEC leads a unique PAN European Partnership with other renowned security clusters that interacts with European and international private partners, policy makers and public administration. Current partners include TeleTrusT (Germany), INTELLECT & ADS Group (UK), NSMC (Czech Republic), AMETIC & Cluster Seguridad (Spain), CYBERNETICA (Estonia), TNO (Netherlands), Euroclouds (Luxemburg) ISSA, ISACA, EEMA, OASIS, BELTUG, AGORIA ICT & AGORIA eHealth, SIRRIS, and more

Guidance and Updates

CERT.be provides updates on cyber alerts, e.g. Samba targeting IoT and NAS devices

It also has a showcase of testimonials from organisations that have been helped in dealing with cyber incidents.

Languages

Dutch, French, English

Date of last WISER analysis July 2017

 

Contact us for more info