Made in Belgium: quality label for security?

Made in Belgium: quality label for security?

The security world in our country and Europe is dominated by mostly foreign players. Yet Belgium also produces large and small security specialists. These have expertise that not only fits the European market perfectly, but can also be admired elsewhere.

If you, as a company, want to get your cyber security in order, you can turn to three types of parties, according to Jo Vander Schueren of Jarviss:

  • The big telecom companies like Orange, Proximus and NTT: “They have made a lot of acquisitions with a focus on cybersecurity,” Vander Schueren said. “They have a way of working that fits well with large multinationals and very large contracts.”
  • Companies with a new focus on cybersecurity: “There are a lot of companies that have added cybersecurity to their Web site in the last few years,” Vander Schueren says. Such companies, he says, do not serve customers who go for comprehensive and serious security.
  • Locally anchored organizations, not linked to a larger party: “Those companies can be counted on one hand.” Vander Schueren points to Jarviss, which he founded with three other experts four years ago, as one of those niche players.

The previous company where Vander Scheuren made a name for himself also belonged to this category: SecureLink. That company originated in Belgium in 2003 and quickly grew into a major independent European player. SecureLink did not remain independent: after a takeover by an American investor, the company eventually became owned by Orange. Known as Orange Cyberdefense, the remnants fall neatly into the first category of organizations.

Jarviss is a young Belgian security specialist, but one with ambition. The company focuses on the Belgian midsize market but also helps smaller players when they share the same security vision. Recently, Jarviss made the jump to the Netherlands. And yes, the name was inspired by Iron Man’s AI butler.

Established Belgian value

Jarviss follows in the footsteps not only of SecureLink, but also of Spotit, which is still wholly owned by Belgium. Steven Vynckier founded Spotit ten years ago, together with partner Frederik Rasschaert. The two became disillusioned with the internal political games within the large company where they worked, and saw a big hole in the Belgian security market. “That gap still exists today,” believes Vynckier, who is trying to fill it in as qualitatively as possible with Spotit.

Like Jarviss, Spotit focuses on the middle segment. Companies with at least 200 employees belong to the target group, but there is no upper limit. The two Belgian security providers have one thing completely in common: They want to partner with customers who see cybersecurity as an added value.

“We are not looking for parties who just want to check a box at ISO2000,” says Vynckier. Also for Jarviss, the size of the customer is not necessarily decisive, but rather the importance they place on security.

Maturity

That importance is growing. “Over time, awareness about cybersecurity has definitely increased,” Vander Schueren believes. “There is more awareness about the impact, thanks in part to all the stories that come out in the news. People are reading that, and starting to think for themselves about their organization.”

Criminals used to break in, today they log in.

Jo Vander Schueren, co-founder Jarviss

“There is a big difference in maturity compared to five years ago, but the complexity of the attacks has also increased,” Vander Schueren continued. “Criminals used to break in, today they log in. Some phishing campaigns are so good that they are almost undetectable with the naked eye.”

Vander Schueren notes that the number of people available has not grown with the complexity. “There still remains a gap,” he says.

Good name abroad

Vynckier agrees that in addition to awareness, complexity is growing and a skills gap remains, but sees things a little rosier. “Companies have really made an effort in recent years to invest and develop plans,” he says.

According to Vynckier, Belgium has an edge there. “Compare our country with the U.S., and you see that the government there is indeed further ahead than ours. For companies, however, we notice the opposite. Belgian companies are better with that.”

Worldwide top 3

“Research by the University of Antwerp and the Antwerp Management School has shown that organizations with high digital maturity regarding data protection and cyber security generally achieve better business results,” frames Koen De Maere, Board member & Director of Marketing and Communications, Government Relations and Advocacy at Isaca.

De Maere: “Belgium is showing exceptional strength there, ranking third on the National Cyber Security Index. That index assesses the cybersecurity maturity of countries worldwide. By making digital trust such a high priority, Belgian organizations are setting the example for other countries.”

Reputation and assets

That, in turn, plays into the reputation of Belgian security companies abroad. “Belgium is a label of quality,” Vynckier notes. “Belgians have a good reputation, and are also known as hard workers.” The European security story thus resonates beyond Europe, all the way to the U.S.

Belgium is a quality label.

Steven Vynckier, co-founder Spotit

Then there are some other strengths peculiar to European and Belgian security specialists. Vynckier: “Compared to international players, we have a deep knowledge of rules around privacy such as the GDPR. That is core business for us. Moreover, we have a local presence and extensive language skills.”

Matter of trust

Vander Schueren notes a similar trend with Jarviss. “Trust is very important in this industry. Actually, companies are buying something they don’t want to stop something they don’t see. In such a matter, nobody wants to be a number. If it really ever fires, you want to be able to call one phone number, with a direct line to someone you trust.”

Organizations like Spotit and Jarviss can offer such a bond of trust, thanks to their local roots. This allows them to do business in their own way with the often more diverse and slightly smaller European companies. Along the other side, the good reputation of Belgian cybersecurity also helps give local players a foothold abroad.

Securing the digital world is a lot of work with room for many players. Large organizations like Orange Cyberdefense certainly have a place in it, but the small independent players clearly do as well. “Belgium is even a bit too small for some of the big players and vendors to pay too much attention to,” Vander Schueren further notes.

The approach with more local players works and even ensures that Belgians outperform their governments on cybersecurity. This brings us full circle, as that reputation in turn sparks interest in Belgian cyber security professionals abroad.