At a European level

The CCB monitors EU laws and initiatives in the field of cybersecurity to ensure they are implemented in Belgium in a way which is consistent with the National Cybersecurity Strategy. These laws and initiatives include the Network and Information Systems (NIS) Directive, the Cyber Security Act (CSA), the Cyber Resilience Act (CRA), the Cyber Diplomacy Toolbox … and several other initiatives which have a cybersecurity component such as the Artificial Intelligence Act or the Digital Decade Programme.

The Belgian NIS Act of 7 April 2019 designated the CCB as the Single Point of Contact for cybersecurity under the NIS Directive. In this capacity, the CCB represents Belgium in the NIS Cooperation Group and in its various sub-working groups.

The CCB’s Director General is a member of the management board of ENISA, the European Union Agency for Cybersecurity.

Operating under the auspices of the CCB, the Belgian National Cybersecurity Certification Authority (NCCA-BE), represents Belgium in the European Cybersecurity Certification Group (ECCG), established under the Cybersecurity Act (CSA), and in ENISA's ad hoc working groups in which new certification schemes are prepared.

The CCB also acts as the National Coordination Centre (NCC) for Belgium as part of a new European management framework consisting of the European Centre of Excellence (in Bucharest) - and a Network of 27 National Coordination Centres - one in each Member State - created with European Regulation (EU) 2021/887 of 20 May 2021. This management framework aims to pool and better coordinate investments in cybersecurity research, technology and industrial development in the Union.

The CCB acts as an expert in support of Belgium’s Permanent Representation to the EU in the Horizontal Working Party on Cyber Issues (HWPCI) within the Council of the European Union, or in other relevant EU fora.

The CCB is a member of the European Cyber Security Organisation (ECSO), the European Commission’s private counterpart in the implementation of the contractual public-private partnership (cPPP) on cybersecurity.

world map lights emerging from a tablet

On an international level

The CCB is Belgium’s operational Point of Contact for the Informal Working Group on Cyberspace within the Organisation for Security and Cooperation in Europe (OSCE). In this working group, participating states work together to develop Confidence Building Measures, including in the area of cybersecurity. In June 2020, Belgium announced its adoption of OSCE Confidence-Building Measure 14 (CBM 14), as established in the Permanent Council Decision No. 1202. Participating States agree to promote public-private partnerships and develop mechanisms to exchange best practices of responses to common security challenges stemming from the use of ICTs. The CCB supports with technical knowledge the work of Belgium to implement CBM14.

The CCB represents Belgium in the Counter-Ransomware Initiative (CRI) initiated by the US and participates in the International CRI Task Force (ICRTF).

If requested, the CCB provides expertise to Belgium’s representations to the North Atlantic Treaty Organization (NATO) and the United Nations (UN) in the area of cybersecurity.

Where appropriate, the CCB also participates in the relevant cybersecurity debates within the Organisation for Economic Cooperation and Development (OECD) and the International Telecommunications Union (ITU). 

The CCB also works with other Belgian or international agencies to support capacity-building projects. One of our latest projects involves cooperation with Benin, whereby the CCB supports Enabel, the Federal Agency for cooperation development, with technical knowledge.

Strengthening Global Cybersecurity: Belgium's Commitment to Capacity Building

At the CCB, we're dedicated to fortifying global cybersecurity through innovative capacity-building initiatives. Our efforts extend far beyond our borders, positioning Belgium as a key player in international cybersecurity.

Global Collaboration for Cyber Excellence

As an active member of the Global Forum for Cyber Expertise (GFCE), the CCB represents Belgium on this prestigious international platform. Here, nations, organizations, and private sector leaders converge to share cutting-edge practices and expertise in cyber capacity-building, fostering a more secure digital world.

Empowering Nations Against Ransomware

On June 27-28, 2024, the CCB joined forces with Lithuanian cybersecurity experts to conduct a unique, advanced MISP training workshop. This initiative, part of the Counter Ransomware Initiative (CRI), brought together professionals from 32 countries. Participants honed their skills in leveraging MISP for ransomware analysis and threat prediction, marking a significant step in our collective defense against cyber threats.

Extending Our Reach: From Africa to the Middle East

Belgium's commitment to cybersecurity knows no bounds. Through Enabel, our federal development agency, we've launched transformative projects across the globe:

  • In Benin (2023), we empowered local authorities to combat cybercrime, focusing on public awareness and enhanced law enforcement capabilities.
  • Senegal (2021-2024) saw us bolster the cybersecurity of its healthcare sector, training over 500 health workers in essential cyber hygiene.
  • An initiatives in Morocco tackled tech-facilitated gender-based violence, offering crucial support to women affected by cybercrime.
  • In Uganda, we conducted workshops to empower women and girls with digital rights knowledge and cybersecurity skills.
  • The Palestine project focused on youth, raising awareness about cyber threats and building robust protection strategies.

These diverse projects underscore our holistic approach to cybersecurity, addressing unique challenges across different regions and demographics.

A Future-Focused Vision

At the CCB, we believe that a secure digital future is built on the foundation of knowledge, collaboration, and empowerment. Our capacity-building initiatives are more than just projects; they're investments in a safer, more resilient global cyber landscape.

Image
man with mountains in the background

At an operational level

The NIS Act of 7 April 2019 designated the CCB as the national Cyber Security Incident Response Team (CSIRT). Through the CERT.be, the CCB is represented in various operational forums, such as the EU CSIRT network, the European Government CERTs Group (EGC), FIRST, TF-CSIRT and CyCLONe, the Cyber Crisis Liaison Organisation Network.

Strengthening National and International Cybersecurity: Belgium's Commitment to Excellence Through Exercises

At the CCB, we believe that preparation is key to cybersecurity resilience. Our comprehensive approach to cyber crisis management involves rigorous testing and continuous improvement through a series of national and international exercises.

National Cyber Preparedness

In collaboration with the National Crisis Centre (NCCN), we've developed the National Cyber Emergency Plan—a robust framework for coordinating responses to national-level cybersecurity crises. To ensure its effectiveness:

  • We conduct annual national cybersecurity exercises, simulating real-world scenarios to test our readiness.
  • Our most recent tabletop exercise (December 13, 2023) focused on communication failures, enhancing our inter-stakeholder coordination.
  • The CCB's operational teams regularly engage in internal drills, with our latest exercise conducted in March 2024.

These exercises provide invaluable insights, driving continuous improvements in our national cyber defense strategies.

International Collaboration for Cyber Resilience

Belgium's commitment to cybersecurity extends beyond our borders. We actively participate in numerous European and international exercises: the CCB is represented in various operational forums where exercises are organised, such as the EU CSIRT network and CyCLONe, the Cyber Crisis Liaison Organisation Network.

  1. EU Healthcare Sector Defense (2022 - as part of Cyber Europe): We joined ENISA's exercise simulating attacks on European healthcare infrastructure, combating disinformation and network threats.
  2. Blue OLEX (October 2023): This executive-level exercise, co-hosted by ENISA and the European Commission, tested EU-wide cyber crisis preparedness.
  3. CyberSOPEx2023 (October 2023): Alongside 27 countries, we simulated cyber-attacks in the energy sector, enhancing rapid response procedures.
  4. CyCLONe CySOPEx (November 16, 2023): We tested swift information exchange protocols for large-scale, cross-border cyber-attacks.
  5. EU Joint Election Resilience Exercise (November 21, 2023): This Brussels-based exercise bolstered our readiness for potential cybersecurity incidents during elections.
  6. National Electoral Process Security Exercise (December 6-7, 2023): In collaboration with the Hybrid Center of Excellence, we tested our resilience against various election-related risks.
  7. Locked Shields 2024: We participated in this cutting-edge NATO exercise, focusing on AI and 5G technologies in cybersecurity.
  8. Cyber Europe 2024: This biennial pan-European exercise simulated political tensions and attacks on the energy sector, testing our multi-faceted response capabilities.

Supporting Academia and Research

We extend our expertise to the academic sector:

  • From November 2023 to April 2024, we collaborated with Belnet, SURF, and Deloitte to provide specialized training for Belgian universities, including a CCB-designed tabletop exercise.

At the CCB, we're not just responding to today's threats—we're anticipating and preparing for tomorrow's challenges. Through these diverse and intensive exercises, we continuously refine our strategies, strengthen our partnerships, and enhance Belgium's position as a leader in global cybersecurity.