Basic cybersecurity policy
Define minimum security requirements, responsibilities and common rules applicable across the organisation.
CyberFundamentals Basic · CCB
Build your cybersecurity policies without starting from scratch.
The Center for Cybersecurity Belgium provides Belgian organisations with reference templates. ITSelect helps you turn them into adapted, validated and usable governance evidence.
Start the diagnosticGet supportOfficial CCB sourceWhy these templates matter
A policy document is not only about compliance. It clarifies responsibilities, provides governance evidence, structures controls and gives management a practical baseline to steer cyber risks.
01Start from a recognised baseline instead of a blank page.
02Adapt rules to the size, business and real risks of the organisation.
03Link policies to controls, suppliers and action plans.
04Prepare useful evidence for audits, NIS2, clients and management.
The 9 documents to structure
The cards below summarise the CCB CyberFundamentals Basic templates and their practical value for a Belgian SME or organisation. Official downloads remain available on Safeonweb@work.
Asset management policy
Identify and track devices, applications, data, accounts and critical resources throughout their lifecycle.
Access policy
Structure who accesses what, under which conditions, with which approvals and periodic reviews.
Password policy
Clarify password, authentication and sensitive access protection requirements.
Network security policy
Frame network protection, segmentation, remote access, equipment and connection rules.
Vulnerability and patch management policy
Organise the detection, prioritisation and remediation of vulnerabilities and security updates.
Backup and restore policy
Define backup scope, frequencies, responsibilities, restore tests and recovery objectives.
Cyber incident response plan
Prepare roles, reflexes, communications, evidence and escalation paths for cybersecurity incidents.
10 Golden Rules for Cybersecurity
Use a simple support document to launch user awareness and promote practical behaviours.
CCB / Safeonweb@work source
The official templates are provided by the Center for Cybersecurity Belgium. They can be used as a working baseline and must be adapted to each organisation’s context. A version adapted by ITSelect does not constitute validation, certification or approval by the CCB.
View the official CCB source and downloads →How ITSelect integrates them into your governance
The objective is not to accumulate documents. The objective is to turn templates into usable evidence connected to your diagnostic, risks, owners and roadmap.
Diagnostic
Identify missing or insufficient policies based on your maturity level.
Adaptation
Customise templates according to your assets, suppliers, tools and internal constraints.
Validation
Assign an owner, review date and management validation path.
Evidence
Link each document to controls, risks, action plans and follow-up reports.
Ready to turn these templates into real governance evidence?
Start with a simple diagnostic, then prioritise the documents to adapt based on your exposure, organisation and obligations.
Launch the diagnosticTalk to an expert