Trust in Digital

NIS2 isn't just about your internal cybersecurity. It's about your entire ecosystem. That includes your integrators, OEMs, component suppliers, and partners. In the past, you might’ve sent a few security questions or asked for ISO 27001. But in the OT context, that’s rarely enough. That’s where ISA/IEC 62443 can be a game changer. ✔️ Security Levels (SL): These define how resilient a component or system is against certain types of attackers (e.g. from casual threats to nation-state actors). ✔️ Maturity Levels (ML): These reflect how well an organisation integrates cybersecurity in its engineering and operational processes (e.g. development lifecycle, patching, documentation). Why this matters: - If you're aiming for SL2 in your own operations, a supplier stuck at SL0 can create a weak link. - If your OEM can't demonstrate maturity (e.g. 62443-2-4 compliance), their products may meet specs but not your security requirements. With 62443, you move beyond checklists and start specifying security: - Require SL levels in your RFQs - Ask for supplier certification where possible - Use maturity assessments to evaluate integrator fit 📦 Supply chain resilience starts with clearly defined, measurable, and shared expectations. 💬 What role does 62443 play in your procurement or supplier conversations? Read the full article or have a quick 30-minute chat with Sam Van Hauwaert: https://shorturl.at/Dd1h4 #IEC #ISA #IACS #ICS #OTSecurity #Cybersecurity #OT #NIS2 #CSMS #ISMS #ISABELGIUM #NIS2 #IEC62443

Are you at Cybersec Nederland today? Come see us, let’s discuss how we can help you create Trust in Digital Christian Kitooto Patrick Coomans Vinçotte

𝐕𝐚𝐧𝐝𝐚𝐚𝐠 𝐤𝐨𝐧𝐝𝐢𝐠𝐞𝐧 𝐰𝐞 𝐦𝐞𝐭 𝐭𝐫𝐨𝐭𝐬 𝐨𝐧𝐳𝐞 𝐯𝐨𝐥𝐠𝐞𝐧𝐝𝐞 𝐠𝐮𝐞𝐬𝐭 𝐬𝐩𝐞𝐚𝐤𝐞𝐫 𝐚𝐚𝐧🚨 Sam Van Hauwaert van Vinçotte Vinçotte (deel van KIWA group) is al decennialang een gevestigde waarde in veiligheid, kwaliteit en conformiteit. Hun expertise in industriële inspectie en risk management maakt hen een cruciale speler in het versterken van vertrouwen in technologie en infrastructuur. 𝐖𝐚𝐭 𝐣𝐞 𝐯𝐞𝐫𝐝𝐞𝐫 𝐦𝐚𝐠 𝐯𝐞𝐫𝐰𝐚𝐜𝐡𝐭𝐞𝐧 𝐨𝐩 2 𝐨𝐤𝐭𝐨𝐛𝐞𝐫: 🔹 De allereerste live demo van Securium 🔹 Toonaangevende keynotes zoals die van Vinçotte 🔹 Q&A & inspirerend netwerken 📍 Defend-OT HQ 📅 2 oktober 2025 | 15:30 🎟️Schrijf je vandaag nog in via: https://lnkd.in/eg_NEsCV hashtag#Securium hashtag#Cybersecurity hashtag#Vinçotte hashtag#Event hashtag#LaunchEvent hashtag#CyberResilience hashtag#TechInnovation

Kiwa will be at Cybersec Netherlands 2025, the leading cybersecurity event taking place on September 10 and 11 at Jaarbeurs Utrecht 🧑💻 You can find our cybersecurity team at booth 11.D024 on both days, ready to discuss how we can help your organization comply with cybersecurity regulations and industry standards across IT, IoT, and OT. Our Belgian Vinçotte colleagues will be there as well. We look forward to meeting you in person! 👉 More info and registration: https://lnkd.in/esUTsEAK #Cybersecurity #NIS2 #ISO27001 #Cybersec #Kiwa Sam Van Hauwaert Christian Kitooto Patrick Coomans David Benoy Bruno Meeus Jonas Van hove

ISO 27001 is often misunderstood. Some see it as a bureaucratic checkbox or a symbolic stamp to win tenders or meet procurement requirements. But that view misses the point — and the opportunity. ISO 27001 is not about paperwork. It’s about building real resilience. At its core, ISO 27001 helps you answer key strategic questions: - What information is truly business-critical? - Where are the weak spots in our current approach? - What risks do we accept — and which ones must we mitigate? - How do we make sure people actually follow the rules? It gives you a structured, repeatable, and measurable way to manage information security. And it brings clarity across the organisation: ✅ Clear roles and responsibilities 🧠 Awareness at every level 🛡️ Controls that are proportionate and risk-based 🔁 A living system that improves over time In practice, this leads to fewer incidents, faster recovery, better client confidence, and smoother audits. But it also does something deeper: it creates a culture where security is not someone’s job — it’s everyone’s job. 🔍 Want to explore how ISO 27001 could become a strength for your organisation — not just a certificate? Book a short call with Christian Kitooto: https://shorturl.at/iGbqt

According to Aon the #NIS2 preparedness of organizations across EMEA is still VERY low. For example, only in 55% of organizations the policies and procedures are in line with NIS2. Especially #management involvement still is lacking, and that is where cyber should start. Management bodies should take proper training, so they understand implications of cybersecurity and can take informed risk-based decisions. Also good to know: a lack of #governance is considered one of the biggest infringements against NIS2. Bottom line: fix it now, let your management participate in regular training. At Vinçotte Academy Belgium we've created a specific training that aims to bring managers, directors, senior staff and board up to speed with cybersecurity in the context of NIS2. These 3-hour sessions take place online, both in Dutch as French. Next dates: - 30/10/2025 - 17/11/2025 Although the preferred format is probably in-company, which we are happy to deliver (in French, Dutch and English). DM myself, Sam Van Hauwaert or Christian Kitooto for more info. Mail: nis2@vincotte.be Vinçotte Academy: https://lnkd.in/eTYJyCM7 The graph is (c) AON, and their report can be found here https://lnkd.in/eEcNbaiA Trust in Digital

🔐 Last week we went from 404 followers to 443 followers Not just a number—443 is also the port of HTTPS and a little symbol of our mission: Trust in Digital. Thanks to everyone who made the secure connection complete. 🤝🔐 😉 BTW, did you know: 👉 the 404 web server status code "not found" was formally published by the IETF in 1996 as RFC 1945, with Tim Berners-Lee, Roy Fielding, and Henrik Frystyk Nielsen as main authors 👉 it was Taher Elgamal at #Netscape who originally developed SSL (usually over the well-known TCP port #443) in 1993-1995 👉 the currently most-used symmetric encryption algorithm used in web browsers today is AES, which was developed by Joan Daemen and Vincent Rijmen while at the Katholieke Universiteit Leuven (KU Leuven) in 1997 (#rijndael) and standardized by NIST in 2001 as AES Join us in improving #TrustinDigital https://lnkd.in/e3qBnAYu