We have received official authorization from the Belgian Centre for Cybersecurity (CCB) to issue ISO 27001:2022 certificates in the context of the EU’s NIS2 directive.
As a recognized Certification Accreditation Body (CAB) for ISO 27001, this new authorization allows us to provide certification services that meet the cybersecurity requirements outlined in NIS2, strengthening our commitment to supporting organizations in their compliance journey.
While Vinçotte has long been accredited to issue ISO 27001 certifications, an additional step is required for organizations operating in Belgium and seeking certification in the context of the NIS2 directive. The CCB mandates that any CAB issuing ISO 27001 certificates under NIS2 must not only be accredited for ISO 27001:2022 but also receive specific authorization from the CCB to operate within this regulatory framework.
This additional requirement is crucial for ensuring that ISO 27001 certifications, when issued in a NIS2 context, can be presumed to comply with the cybersecurity standards outlined in the directive.
The NIS2 directive, part of the European Union's updated Network and Information Systems Directive, aims to bolster cybersecurity measures across EU member states by mandating stricter controls for operators of essential services and key digital service providers. Organizations falling under the scope of NIS2 are required to meet rigorous cybersecurity standards, and ISO 27001 certification provides a clear framework for demonstrating compliance. Belgium is a frontrunner in Europe with its quick transposition of the EU directive into local law, which becomes effective in Belgium on October 18th 2024.
For more information on NIS2, please visit the website of the CCB
However, for an ISO 27001 certificate to be recognized within the NIS2 framework in Belgium, it must be issued by a CAB like Vinçotte, which has received the necessary CCB authorization.
At Vinçotte, we combine our longstanding expertise in ISO certification with our 152-years of expertise in safety. As such we look at cybersecurity from a broad perspective, not just IT security, but also Industrial Automation Control Systems (ICS, OT), IEC 62443, device security as safety perspectives. To learn more about how Vinçotte can support your cybersecurity and compliance needs under NIS2, for example to better understand the applicable frameworks and certification process in order to become NIS2 compliant, please contact us.
Find out more about all our Cybersecurity solutions on our dedicated page.