Back to Frameworks

Belgium CyberFundamentals

Belgium
v2023
6 domains
44 controls

Belgian Centre for Cybersecurity CyberFundamentals Framework

Verified

Framework summaries on this platform are AI-assisted interpretations for educational and compliance planning purposes. They do not reproduce or replace the official standards. Refer to the authoritative source for the definitive text. Framework names and trademarks belong to their respective organisations.

Framework Domains (6)

Belgium CyberFundamentals: Detect

7 controls
Controls in the Belgium CyberFundamentals: Detect domain of Belgium CyberFundamentals7 controls
CodeTitle
BE-CF-12Network monitoring and defense
BE-CF-17Continuous monitoring strategy
BE-CF-28Audit event logging and storage
BE-CF-29Audit record review and analysis
BE-CF-30Time synchronization
BE-CF-31Audit log protection and retention
BE-CF-32Accountability and non-repudiation

Belgium CyberFundamentals: Identify

9 controls
Controls in the Belgium CyberFundamentals: Identify domain of Belgium CyberFundamentals9 controls
CodeTitle
BE-CF-13Risk assessment procedures
BE-CF-14Vulnerability scanning and management
BE-CF-15Security categorization
BE-CF-16Threat intelligence integration
BE-CF-26System component inventory
BE-CF-33Asset management and data flow mapping
BE-CF-34Business environment
BE-CF-35Cybersecurity governance and policy
BE-CF-36Supply chain risk management

Belgium CyberFundamentals: Protect

18 controls
Controls in the Belgium CyberFundamentals: Protect domain of Belgium CyberFundamentals18 controls
CodeTitle
BE-CF-01Account management and provisioning
BE-CF-02Access enforcement and least privilege
BE-CF-03Multi-factor authentication requirements
BE-CF-04Remote access controls
BE-CF-05Wireless access restrictions
BE-CF-06Identity proofing and verification
BE-CF-07Boundary protection and segmentation
BE-CF-08Cryptographic protection of data
BE-CF-09Denial-of-service protection
BE-CF-10Transmission confidentiality and integrity
BE-CF-11Session management controls
BE-CF-23Baseline configuration establishment
BE-CF-24Configuration change control
BE-CF-25Security impact analysis
BE-CF-27Software usage restrictions
BE-CF-37Awareness and training
BE-CF-38System maintenance
BE-CF-39Data security lifecycle management

Belgium CyberFundamentals: Recover

3 controls
Controls in the Belgium CyberFundamentals: Recover domain of Belgium CyberFundamentals3 controls
CodeTitle
BE-CF-40Recovery planning
BE-CF-41Recovery improvements
BE-CF-42Recovery communications

Belgium CyberFundamentals: Respond

5 controls
Controls in the Belgium CyberFundamentals: Respond domain of Belgium CyberFundamentals5 controls
CodeTitle
BE-CF-18Incident response planning and testing
BE-CF-19Incident handling and containment
BE-CF-20Incident reporting and notification
BE-CF-21Forensic analysis capabilities
BE-CF-22Lessons learned and improvement

Belgium CyberFundamentals: Scoping and Regulatory Alignment

2 controls
Controls in the Belgium CyberFundamentals: Scoping and Regulatory Alignment domain of Belgium CyberFundamentals2 controls
CodeTitle
BE-CF-43Assurance level selection and scoping
BE-CF-44NIS2 alignment

Your Compliance Coverage

If you comply with Belgium CyberFundamentals, you already cover:

+ 42 more: NIST SP 800-171A - Assessing Security Requirements for Controlled Unclassified Information (CUI) (39%), AWWA Cybersecurity Guidance for the Water Sector (American Water Works Association) (32%)

See all 45 mapped frameworks ↓

Maps to 45 other frameworks

44 total controls
NIST Cybersecurity Framework 2.0
44 source controls mapped|32 target controls covered
100%
AWS Well-Architected Security Pillar
18 source controls mapped|12 target controls covered
41%
Azure Security Benchmark
18 source controls mapped|12 target controls covered
41%
API 1164
13 source controls mapped|12 target controls covered
30%
NIST SP 800-171A Rev 3 - Assessing CUI Security Requirements
13 source controls mapped|8 target controls covered
30%
ISO/IEC 27400:2022
11 source controls mapped|5 target controls covered
25%
APPI
10 source controls mapped|5 target controls covered
23%
ASD Strategies to Mitigate Cyber Security Incidents
10 source controls mapped|11 target controls covered
23%
ISO/IEC 27011:2024
9 source controls mapped|6 target controls covered
20%
ISO/IEC 27010:2015
8 source controls mapped|5 target controls covered
18%
NIST AI Risk Management Framework (AI RMF 1.0)
7 source controls mapped|3 target controls covered
16%
ISO/IEC 29147:2018
7 source controls mapped|5 target controls covered
16%
IEC 62351 - Power Systems Communication Security
7 source controls mapped|3 target controls covered
16%
Barbados Data Protection Act 2019
6 source controls mapped|1 target controls covered
14%
ASIS SPC.1-2009 - Organizational Resilience Standard
6 source controls mapped|2 target controls covered
14%
NIST SP 800-171
6 source controls mapped|2 target controls covered
14%
ISO/IEC 30111:2019
4 source controls mapped|4 target controls covered
9%
ISO/IEC 27557:2022 - Organisational Privacy Risk Management
4 source controls mapped|3 target controls covered
9%
ISO/IEC 29134:2023
4 source controls mapped|4 target controls covered
9%
AML/CTF Act 2006 (Australia)
4 source controls mapped|2 target controls covered
9%
AS9100D:2016 - Quality Management Systems for Aviation, Space, and Defence
4 source controls mapped|2 target controls covered
9%
ISO 19011
3 source controls mapped|5 target controls covered
7%
ISO 31000:2018
3 source controls mapped|4 target controls covered
7%
ISO/IEC 27014:2020
3 source controls mapped|2 target controls covered
7%
ISO/IEC 27031:2011
3 source controls mapped|1 target controls covered
7%
AS9100D - Aerospace Quality Management System
3 source controls mapped|1 target controls covered
7%
ISO/IEC 27003:2017
3 source controls mapped|1 target controls covered
7%
5%
ISO/IEC 23837 - Security Requirements for Quantum Key Distribution
2 source controls mapped|4 target controls covered
5%
ISO/IEC 29115:2023 - Entity Authentication Assurance Framework
2 source controls mapped|4 target controls covered
5%
ISO 27701:2019
1 source controls mapped|1 target controls covered
2%
IEC 60601-1 - Medical Electrical Equipment Safety
1 source controls mapped|1 target controls covered
2%
ISO/IEC 42001:2023
1 source controls mapped|1 target controls covered
2%
ISO 22301:2019
1 source controls mapped|2 target controls covered
2%
ISO/IEC 23894:2023
1 source controls mapped|1 target controls covered
2%
ISO/IEC 27006:2024
1 source controls mapped|1 target controls covered
2%
Austria Data Protection Act (Datenschutzgesetz, DSG, amended 2018)
1 source controls mapped|1 target controls covered
2%
ISO/IEC 38500:2024
1 source controls mapped|2 target controls covered
2%
ISO 37001:2016
1 source controls mapped|1 target controls covered
2%
ISO 27005
1 source controls mapped|1 target controls covered
2%
ISO 20000-1
1 source controls mapped|1 target controls covered
2%
Armenia Law on Protection of Personal Data (2015)
1 source controls mapped|1 target controls covered
2%
ISO 13485
1 source controls mapped|1 target controls covered
2%

Frequently Asked Questions

What is Belgium CyberFundamentals?

Belgium CyberFundamentals is a compliance framework from Belgium with 6 domains and 44 controls. Belgian Centre for Cybersecurity CyberFundamentals Framework It is used by organisations to establish and maintain compliance with industry standards and regulatory requirements.

How many controls does Belgium CyberFundamentals have?

Belgium CyberFundamentals has 44 controls organised across 6 domains. The largest domains are Belgium CyberFundamentals: Protect (18 controls), Belgium CyberFundamentals: Identify (9 controls), Belgium CyberFundamentals: Detect (7 controls). Each control defines specific requirements that organisations must implement to achieve compliance.

What frameworks does Belgium CyberFundamentals map to?

Belgium CyberFundamentals maps to 45 other compliance frameworks. The top mapping partners are NIST Cybersecurity Framework 2.0 (100% coverage), AWS Well-Architected Security Pillar (41% coverage), Azure Security Benchmark (41% coverage). Use our comparison tool to explore control-level mappings between frameworks.

How do I get started with Belgium CyberFundamentals compliance?

Start your Belgium CyberFundamentals compliance journey by running a self-assessment on our platform to identify your current compliance posture. Our AI advisory can answer specific questions about Belgium CyberFundamentals requirements, and cross-framework mapping helps you leverage existing controls from other frameworks you may already comply with. Create a free account to access all 44 controls and track your progress.

Start Your Compliance Journey

Create a free account to run self-assessments, get AI advisory, and track your compliance progress across 723 frameworks.

Get Started Free →

Free forever — no credit card required