{"id":20668,"date":"2024-04-24T13:55:57","date_gmt":"2024-04-24T11:55:57","guid":{"rendered":"https:\/\/brandcompliance.com\/?post_type=docs&#038;p=20668"},"modified":"2026-03-27T11:44:41","modified_gmt":"2026-03-27T10:44:41","password":"","slug":"cyberfundamentals-framework","status":"publish","type":"docs","link":"https:\/\/brandcompliance.com\/en\/docs\/cyberfundamentals-framework\/","title":{"rendered":"CyberFundamentals Framework in Belgium: what is the relationship with NIS2?"},"content":{"rendered":"<p>Have you ever heard of the <a href=\"https:\/\/atwork.safeonweb.be\/tools-resources\/cyberfundamentals-framework\" target=\"_blank\" rel=\"noopener\">CyberFundamentals Framework<\/a>? In this article, we explain what the framework involves and how it relates to <a href=\"https:\/\/eur-lex.europa.eu\/legal-content\/EN\/TXT\/?uri=CELEX%3A32022L2555\" target=\"_blank\" rel=\"noopener\">NIS2<\/a>, the European directive aimed at improving cybersecurity. This helps you assess whether the framework may be relevant for your organization.<\/p>\n<h2><strong><img decoding=\"async\" class=\"alignright wp-image-20657 size-medium\" src=\"https:\/\/brandcompliance.com\/wp-content\/uploads\/2024\/04\/Europa_web-300x199.jpg\" alt=\"cyberfundamentals\" width=\"300\" height=\"199\" srcset=\"https:\/\/brandcompliance.com\/wp-content\/uploads\/2024\/04\/Europa_web-300x199.jpg 300w, https:\/\/brandcompliance.com\/wp-content\/uploads\/2024\/04\/Europa_web-1024x678.jpg 1024w, https:\/\/brandcompliance.com\/wp-content\/uploads\/2024\/04\/Europa_web-768x509.jpg 768w, https:\/\/brandcompliance.com\/wp-content\/uploads\/2024\/04\/Europa_web-1536x1018.jpg 1536w, https:\/\/brandcompliance.com\/wp-content\/uploads\/2024\/04\/Europa_web-600x398.jpg 600w, https:\/\/brandcompliance.com\/wp-content\/uploads\/2024\/04\/Europa_web.jpg 2000w\" sizes=\"(max-width: 300px) 100vw, 300px\" \/>NIS2 <\/strong><\/h2>\n<p>Given recent developments in cybersecurity, the implementation of NIS2 is important for organizations operating in the 17 designated sectors. The directive places a stronger emphasis on cybersecurity risk management and management accountability. Organizations are expected to take their responsibilities seriously and carry out a thorough assessment of their risk level.<\/p>\n<p>NIS2 has applied since October 18, 2024. This makes it important for organizations to take proactive measures and strengthen their cybersecurity approach<\/p>\n<h3><strong>What does this mean for my organization? <\/strong><\/h3>\n<p>Would you like to know whether NIS2 applies to your organization? Via <a href=\"https:\/\/atwork.safeonweb.be\/nis2\" target=\"_blank\" rel=\"noopener\">this link<\/a>, you can find more detailed information and assess whether your organization falls within scope.<\/p>\n<h2>CyberFundamentals Framework<\/h2>\n<p>The CyberFundamentals Framework is closely related to NIS2 and was developed in Belgium. It contains concrete cybersecurity measures intended to help organizations improve data protection, reduce the risk of cyberattacks, and strengthen their overall cyber resilience. The Centre for Cybersecurity Belgium invites Belgian private and public organizations established in or active in Belgium to use the framework.<\/p>\n<h3><strong>Four levels <\/strong><\/h3>\n<p>These measures are divided into four different levels:<\/p>\n<ul>\n<li>SMALL<\/li>\n<li>BASIC<\/li>\n<li>IMPORTANT<\/li>\n<li>ESSENTIAL<\/li>\n<\/ul>\n<p>Each level includes more measures than the previous one. The aim of the Centre for Cybersecurity Belgium is for every organization in Belgium to eventually meet the BASIC level.<\/p>\n<h3><strong>Five core functions <\/strong><\/h3>\n<p>The CCB CyberFundamentals Framework is built around five core functions:<\/p>\n<ul>\n<li>identify<\/li>\n<li>protect<\/li>\n<li>detect<\/li>\n<li>respond<\/li>\n<li>recover<\/li>\n<\/ul>\n<p>These functions support communication about cybersecurity between technical professionals and stakeholders. They also help organizations embed cyber-related risks into their broader risk management strategy and strengthen resilience in the event of a cyberattack.<\/p>\n<h2><strong>Verification and certification\u00a0 <\/strong><\/h2>\n<p>A presumption of conformity may be obtained through CyberFundamentals verification at BASIC or IMPORTANT level, through CyberFundamentals certification at ESSENTIAL level, or through ISO 27001 certification, provided that the scope and the Statement of Applicability are considered acceptable by the CCB.<\/p>\n<p>Verification or certification of the CyberFundamentals Framework is carried out by an accredited and recognized certification body.<\/p>\n<h3><strong>Brand Compliance &amp; CyberFundamentals <\/strong><\/h3>\n<p>Brand Compliance Belgi\u00eb obtained BELAC accreditation on September 4, 2025 to perform CyFun verification. This means Brand Compliance can support organizations in demonstrating presumed compliance in the context of NIS2 through CyFun verification.<\/p>\n<p>Would you like to know what this could mean for your organization? Please <a href=\"https:\/\/brandcompliance.com\/en\/contact\/\">contact<\/a> us.<\/p>\n<p>Need training on NIS2? <a href=\"https:\/\/bc.academy\/product-categorie\/nis2\/\" target=\"_blank\" rel=\"noopener\">BC Academy<\/a> offers training courses on this topic.<\/p>\n<div id=\"gtx-trans\" style=\"position: absolute; left: 236px; top: 1123px;\">\n<div class=\"gtx-trans-icon\"><\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Have you ever heard of the CyberFundamentals Framework? In this article, we explain what the framework involves and how it relates to NIS2, the European&#8230;<\/p>\n","protected":false},"author":6,"featured_media":20657,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":""},"doc_category":[2366],"doc_tag":[],"class_list":["post-20668","docs","type-docs","status-publish","has-post-thumbnail","hentry","doc_category-nis2-en"],"acf":[],"year_month":"2026-04","word_count":423,"total_views":"3695","reactions":{"happy":"0","normal":"0","sad":"0"},"author_info":{"name":"Anika","author_nicename":"anika","author_url":"https:\/\/brandcompliance.com\/en\/author\/anika\/"},"doc_category_info":[{"term_name":"NIS2 Directive","term_url":"https:\/\/brandcompliance.com\/en\/docs-category\/nis2-en\/"}],"doc_tag_info":[],"knowledge_base_info":[],"knowledge_base_slug":[],"_links":{"self":[{"href":"https:\/\/brandcompliance.com\/en\/wp-json\/wp\/v2\/docs\/20668","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/brandcompliance.com\/en\/wp-json\/wp\/v2\/docs"}],"about":[{"href":"https:\/\/brandcompliance.com\/en\/wp-json\/wp\/v2\/types\/docs"}],"author":[{"embeddable":true,"href":"https:\/\/brandcompliance.com\/en\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/brandcompliance.com\/en\/wp-json\/wp\/v2\/comments?post=20668"}],"version-history":[{"count":6,"href":"https:\/\/brandcompliance.com\/en\/wp-json\/wp\/v2\/docs\/20668\/revisions"}],"predecessor-version":[{"id":25910,"href":"https:\/\/brandcompliance.com\/en\/wp-json\/wp\/v2\/docs\/20668\/revisions\/25910"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/brandcompliance.com\/en\/wp-json\/wp\/v2\/media\/20657"}],"wp:attachment":[{"href":"https:\/\/brandcompliance.com\/en\/wp-json\/wp\/v2\/media?parent=20668"}],"wp:term":[{"taxonomy":"doc_category","embeddable":true,"href":"https:\/\/brandcompliance.com\/en\/wp-json\/wp\/v2\/doc_category?post=20668"},{"taxonomy":"doc_tag","embeddable":true,"href":"https:\/\/brandcompliance.com\/en\/wp-json\/wp\/v2\/doc_tag?post=20668"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}