There is no shortage of security solutions, but are they being used correctly? Cyfora, originating from the Belgian security company Jarviss, recently emerged from this question.
Cyfora can call itself one of the youngest companies on the Belgian security market. The company was christened at the end of 2025 as a sister company of Jarviss. As a new player in the market, Cyfora does not simply want to do the same as the established players. Cyfora does not supply the technology to close gaps in your security, but examines whether you are using your existing technology effectively.
We speak with Raf Van der Veken, who takes on the daily management, about the first steps of Cyfora. “Today we have four people permanently employed and we also work with around seven freelancers. For the time being, we are finding staff within our own network, but from conversations with customers we are noticing that our approach is appealing.”
Insight into security
“Cyfora arose from a need for companies to monitor and gain more insight into the performance of their security stack,” says Van der Veken. Today there is no shortage of technologies to secure your digital environment and suppliers who claim that their solution is all-encompassing. According to Van der Veken, the problem is not that companies are not investing in security, but that they do not have sufficient insight into how well it works.
“Many cyber incidents would have significantly less impact if the existing solutions were used optimally. Companies spend a lot of budget on so-called ‘state of the art’ technology, but very often these tools turn out not to be configured properly. If a firewall lets through more traffic than intended, this can have very damaging consequences,” says Van der Veken.
Companies spend a lot of budget on security technology without knowing whether it is configured properly.
Raf Van der Veken, Managing Director Cyfora
Cyfora offers companies insight into how effectively their security technology is being used. Van der Veken: “The platform provides accurate data, after which an AI model analyzes the policy information and provides an overview of what is present and what is missing. The model will monitor all technology from which data can be obtained 24/7 and benchmark it against best practices. This way, users always know whether the technology is still being used correctly.”
More than compliance
Van der Veken believes that Cyfora’s platform can also provide useful information in the context of NIS2 compliance. “In hospitals, for example, people are often busy full-time for six months collecting information in the context of NIS2. An exercise that they must also repeat at least once a year. Our platform helps save time by creating visibility and automating processes such as governance and policy. Although every organization has a greater need for insight, organizations subject to NIS2 are our initial target group.”
But don’t call Cyfora a ‘compliance platform’, Van der Veken points out sharply. “We help customers become truly safer. Compliance is actually only a side issue for us. Just because you are compliant doesn’t mean you are also safe. But you are compliant if you have the basics in order. That is why we focus on the fundamental building blocks of a cybersecurity ecosystem, and then compliance will follow automatically.”
Just because you are compliant doesn’t mean you are also safe.
Raf Van der Veken, Managing Director
Finally, Cyfora also offers ‘CISO-as-a-service’ services “where we answer questions or even participate in IT departments,” adds Van der Veken. “We also have numerous additional services such as pentesting, security awareness creation via training and phishing simulations, tabletop exercises, and red teaming and GRC services. We don’t just want to put a platform or tool on the market. We really want to help customers use the platform in combination with the services to improve their cybersecurity maturity.”
read also
United Front against Cyber Threats: how we get SMEs on board the NIS2 train
Ready for launch
The new year definitely means a new beginning for Van der Veken and Cyfora. Cyfora is about to enter the Belgian market, and hopes to quickly take the step to the Netherlands via sister company Jarviss. “We have already signed up a few customers who want to join our story now. It is important for us that we are close to our customers and understand the problems they are facing. This is the only way we can better develop the platform and tailor our services to their needs.”
Van der Veken expects that there will be a great need for a platform like Cyfora. “The constantly increasing complexity of the cybersecurity landscape, combined with stricter and more extensive regulations, makes it increasingly challenging for organizations to fully manage the risks and meet all obligations. There is such a wide variety of solutions that it becomes almost impossible to support and integrate them all.”
In the ‘ICT in Belgium’ series, we focus on local, Belgian players in the sector. Do you want to discover more Belgian specialists? Here you will find all the interviews from the series.