Benelux companies primarily rely on Microsoft and established security partners to arm themselves against threats such as ransomware and phishing, while AI simultaneously introduces new opportunities and risks.
Research by SoftwareOne shows that organizations in the Benelux are heavily investing in external expertise to strengthen their digital resilience. The majority work with one or more security partners, and Microsoft Security emerges as the most dominant provider.
The scale of the survey is very limited, so the insights should be viewed primarily as illustrative. SoftwareOne surveyed 94 IT managers in the Benelux.
Together with a Partner
The survey shows that 72 organizations work with a security partner. Of these, the majority (52) opt for one fixed partner, while 20 – typically larger – companies engage multiple partners. The collaboration revolves not only around endpoint and network security, but also audits, firewalls, license management, and managed services such as a Security Operations Center (SOC).
It’s notable that a small group of respondents (thirteen organizations) handle security entirely in-house. Only five respondents indicate having no fixed partner at all. Especially within the public sector and healthcare institutions, the sample clearly shows that security is rarely tackled alone.
Strong Position for Microsoft
Microsoft has a strong position in the Benelux, and this is no different in the security domain. Microsoft Security stands out as the most popular provider. Twenty organizations rely on Windows Server, SQL Server, Sentinel, Defender, and the Microsoft 365 E5 suite as the backbone of their digital security.
Additionally, Fortinet is frequently mentioned (eleven respondents). Other specialized providers such as Zscaler, TrendMicro, Sophos, and CrowdStrike are also well-known in the Benelux. A shift toward cloud security and integrated Microsoft solutions is clearly noticeable.
read also
What is Zscaler and how does one pronounce it?
Challenges
The need for specialized support is no coincidence: threats are increasing in volume and complexity. IT managers particularly cite ransomware, phishing, and network hacking as the biggest risks. In the research, SoftwareOne makes no distinction between a vector (such as phishing, through which criminals gain access) and an executed attack (such as the hijacking of files via ransomware).
- Ransomware saw an increase of 126 percent in the first quarter of 2025 compared to last year.
- Phishing remains the most common attack vector (mentioned by 45 organizations). Companies respond with awareness campaigns, but AI makes phishing emails increasingly convincing.
- Network hacking and vulnerabilities in legacy and IoT systems create additional challenges, especially in the healthcare sector where outdated medical equipment is difficult to secure.
This mix of threats compels organizations to invest in both preventive measures and continuous monitoring via SOC/SIEM services.
AI Flavor
No report without a chapter on AI: SoftwareOne also asks respondents about the new technology. Almost half of the companies use AI tools. Microsoft Copilot and ChatGPT are especially popular. It’s notable that in SoftwareOne’s survey, more companies use Copilot (26) than ChatGPT (22). This finding contradicts the global trend, where Microsoft struggles to market Copilot.
The perceived benefits are always the same: higher productivity and faster access to information. Concerns about data security are growing. One in four companies indicates that they are losing track of where data is stored and how it is being used.
Additionally, Shadow AI is emerging: employees using AI tools outside of IT control. Organizations don’t want to slow down innovation but are looking for ways to limit the risks of uncontrolled data use.