CyFun Basic Practitioner
Understand the full CyberFundamentals framework, meet your NIS2 obligations, and leave with a ready-to-deploy compliance toolkit. Two focused days to get it done.
Our institutional partners
Why this training?
Most organisations in scope know they need to be compliant. Few know exactly what that requires in practice, or where to start. This training bridges that gap.
Meet your legal obligation
If your organisation is subject to NIS2, CyFun compliance is your regulatory roadmap. Understand precisely what the CCB requires and what CyberFundamentals Basic means in practice.
Walk away with real tools
Two hands-on workshops produce six ready-to-use implementation templates: from asset inventory to incident response. Not slides. Working documents.
In the supply chain? You are in scope too.
Organisations providing services to essential or important entities are increasingly required to demonstrate CyFun Basic compliance. Get ahead of your clients' security requirements before they ask.
Two days. Six functions. Six templates.
The complete CyberFundamentals framework, covered in depth.
Templates produced during the workshops
Govern
Cybersecurity governance framework aligned with business objectives.
Explore ↓Identify
Manage risk to systems, people, assets, data, and capabilities.
Explore ↓Protect
Safeguards to ensure delivery of critical services.
Explore ↓Detect
Timely identification of cybersecurity events.
Explore ↓Respond
Act on detected incidents and contain their impact.
Explore ↓Recover
Restore capabilities impaired by a cybersecurity incident.
Explore ↓- European and Belgian cybersecurity regulatory landscape
- Governance, risk management and compliance obligations expected by competent authorities
- Compliance monitoring, maturity assessments and continuous improvement principles
- Organisational context, cybersecurity strategy and policies
- Roles, responsibilities, authorities and oversight accountability
- Supply chain governance and cybersecurity risk management processes
- Asset management: hardware, software, data, and people
- Risk assessment methodology aligned with CyFun Basic requirements
- Risk management strategy and treatment planning
- Identity management, access control and privilege management
- Awareness, training and data security measures
- Information protection processes and protective technology
- Anomalies, events and security continuous monitoring
- Detection processes and integration with incident response
- CyFun-required detection capabilities at the Basic level
- Response planning, roles and escalation procedures
- Communications during an incident: internal teams and competent authorities
- Analysis, mitigation and post-incident improvement cycles
- Recovery planning, RTO/RPO and critical service restoration priorities
- Business Continuity Plan structure and key components
- Communication during recovery: stakeholders and regulatory reporting obligations
CyFun Basic Practitioner
Per participant, per session. Includes lunches, coffee breaks, snacks, and all course materials. Group and in-house rates available on request.
Register nowIncluded in your registration
Your learning does not stop on day two
Each participant receives one complimentary hour with a senior cybersecurity expert, to be scheduled within 30 days of the training. A dedicated session to turn what you learned into concrete next steps within your organisation.
- Get specific answers about your organisation's CyFun compliance gaps and priorities
- Have your draft policies, risk assessments or registers reviewed by an expert
- Receive a personalised roadmap for the next steps in your compliance journey
- Prepare confidently for a CyberFundamentals assessment conducted by the CCB
Your trainers
Our trainers are active cybersecurity practitioners with hands-on experience in CyFun assessments, NIS2 compliance projects, and cybersecurity governance across Belgian and European organisations.
Georges Ataya
Georges Ataya is one of Belgium's foremost authorities in cybersecurity governance and risk management. Professor and Academic Director at Solvay Brussels School of Economics & Management, he co-founded the Cybersecurity Coalition Belgium and serves as its Vice-Chair. With 45 years of experience advising organisations across the public and private sectors, he brings both academic rigour and deep practitioner insight to every session, with direct expertise in NIS2 implementation and CCB CyFun assessments.
Taco Mulder
Taco Mulder is CISO at Belgium's Federal Public Service Policy & Support (BOSA) and a recognised voice in public sector cybersecurity. A former CISO at Brussels public hospitals, he coordinates the Cybersecurity in Healthcare Focus Group at the Cybersecurity Coalition and is a topic leader in Information Security Management at Solvay Brussels School. He is also a mentor and coach for the Women4Cyber programme, and serves as a juror for the Belgium Cybersecurity Personality of the Year Award.
Who should attend?
This training is designed for professionals responsible for cybersecurity, risk, and compliance. No prior CyFun knowledge required.
Join the next CyFun Basic session
Seats are limited. Secure your place and leave with everything you need to achieve CyberFundamentals Basic compliance in two focused days.
Register for the training Request in-house trainingCyFun® is a registered trademark of the Centre for Cybersecurity Belgium (CCB), an institution operating under the authority of the Prime Minister of Belgium. CyFun stands for CyberFundamentals Framework. The CyFun Framework and the CyberFundamentals Conformity Assessment Scheme (CAS) are published and maintained by the CCB at www.cyfun.be. This training is independently developed and delivered by Ataya & Partners. It is not officially certified, endorsed, or licensed by the CCB.