The Security Factory

The Security Factory

Speciality: Ethical Hacking and Penetration Testing

Belgium 27 employees
Visit Website View on LinkedIn
[01] About

IT services and cybersecurity company specializing in penetration testing, red team exercises, and security training; 20 employees, founded 2012, headquartered in Belgium; offers expertise in social engineering, phishing, and secure software, with active social media presence and competitive positioning in the Belgian cybersecurity market.

The main goal of the Security Factory is to test/assess the current security maturity level of clients. We are solely focused on two services: penetration testing and user awareness. From a penetration testing point of view we test infrastructure, networks (external and internal), Wifi networks, applications (web, mobile, API), industrial environments, ... Our awareness offer consists of phishing simulations, social engineering exercises and presenting live hacking demo's. Finally, we also offer red teaming as the ultimate exercise which combines all of the above services to test our clients security maturity.
[02] Services
Penetration Testing
User Awareness Training
[03] Certifications
ISO 27001

ISO 27001: Information Security Management Certification


Origin


ISO 27001 was developed by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), and was first published in 2005. It evolved from the British Standard BS 7799-2, which was created in the late 1990s. The standard was developed in response to the growing need for organizations to systematically manage and protect sensitive information in an increasingly digital business environment. ISO 27001 has since been revised, with major updates released in 2013 and 2022 to address evolving cybersecurity threats and best practices.


Industry Value and Importance


ISO 27001 is globally recognized as the leading standard for information security management systems (ISMS) and is valued for providing a systematic, risk-based approach to protecting sensitive data. Organizations that achieve ISO 27001 certification demonstrate to clients, partners, and regulators that they have implemented comprehensive security controls and are committed to maintaining confidentiality, integrity, and availability of information. The certification is particularly important for organizations handling sensitive data, as it helps meet regulatory compliance requirements, reduces security incidents, builds customer trust, and often provides a competitive advantage in procurement processes where information security assurance is required.

OSEP (offensive Security Experienced Penetration Tester)
OSCP (offensive Security Certified Professional)
Oscp+
[05] Notable Clients
  • Brussels Airlines
  • GlobalSign
  • Colruyt Group
  • Car-Pass