Our cybersecurity trainers are seasoned professionals with extensive backgrounds in cybersecurity, risk management, information security and data-protection. They bring hands-on experience from both public and private sectors, ensuring that every course is grounded in real-world relevance.
Trainers hold globally recognized certifications such as CISSP, CISM, and ISO/IEC 27001 Lead Auditor, among others, reflecting their deep technical knowledge and experience with best practices in security. Whether you are new to security or advancing your expertise, our trainers are here to guide your learning journey with clarity, confidence, and credibility. Below, you’ll find our cybersecurity trainers.
Rob van der Staaij
Rob is the founder of Stysec B.V. and an expert in cybersecurity, identity and access management, risk management, and privacy.
He is affiliated with the University of Groningen and regularly publishes articles on cybercrime.
Rob gives training courses in which he clearly explains complex topics. He emphasizes the importance of cybersecurity in a digital world.
His training courses are structured and focused on active participation. Rob encourages interaction and discussion. He expects his students to be engaged.
Oscar Koeroo
Oscar is Group CISO at the Ministry of Health, Welfare and Sport and is responsible for the information security strategy.
He combines technical knowledge with policy and strategic experience. He previously worked at KPN and Nikhef, where he focused on cryptography and cybersecurity.
Oscar has experience with PKI, CAs, and incident management. His training courses are in-depth and practical. He explains complex topics clearly.
Oscar is an authority in the field of information security.
Manon de Vries
Manon is a researcher in applied cryptography at TNO and has experience as a pentester, security engineer, and privacy officer.
She gives training courses on encryption and PKI, linking theory to practice. Manon emphasizes the importance of context and the applicability of cryptography.
She stands for integrity and practical solutions. Her lessons are accessible and focused on realistic applications.
She combines technical knowledge with insight into organizational processes. Manon makes complex material understandable.
Jochen den Ouden
Jochen is a Certified Ethical Hacker and trainer in privacy and ethical hacking. He combines practical experience with teaching and emphasizes the human side of IT security.
His training courses focus on awareness and thinking like a hacker. Jochen believes that information security revolves around people, technology, and organization.
He uses practical examples to bring the subject matter to life. His style is clear and sociable.
Jochen provides training in ethical hacking, secure programming, and information security.
Erik Veldhuis
Erik is a crisis management expert at the IND and has gained experience at PwC.
He focuses on the pragmatic design of crisis management and continuity processes. His training courses combine theory with practical tips.
Erik creates a safe learning environment in which participants learn from each other. He helps organizations respond effectively to crises.
His approach is integrated and practice-oriented.
Erik encourages participants to implement changes within their organizations.
Edo-Jan Koster
Edo-Jan has 25 years of experience in IT and works as a Lead Auditor at DEKRA.
He specializes in information security, quality, IT service management, and continuity management.
His approach focuses on combining standards with organizational dynamics. Edo-Jan links theory to practice with recognizable examples.
He has worked in both large and small organizations, in the public and private sectors. His training courses are interactive and practice-oriented.
He encourages knowledge sharing and discussion.
Bas van den Berg
Bas started as a developer and progressed to become a security consultant focusing on secure development and security assessment.
He combines technical knowledge with insight into human behavior.
His training courses are interactive and focused on practical applicability. Bas explains complex topics using examples.
He emphasizes the importance of security in a data-driven world. His goal is to make participants aware and skilled in digital security.
He creates a learning environment in which knowledge sharing is central.
Mariette Neumann
Mariëtte is Managing Director of KCS Marketing and an expert in public relations and crisis communication.
She translates strategy into concrete plans and shares her knowledge in training courses.
Her lessons combine theory with practical examples and exercises. She focuses on strengthening communication skills in crisis situations.
Mariëtte emphasizes the importance of careful information transfer. Her training courses are varied and practice-oriented.
She provides a learning environment in which participants actively practice.
Serge Buitenhuis
Serge is a consultant in the public and private security sector with more than 10 years of experience in security strategy.
He has trained over 150 professionals in security risk management. His training courses are energetic, interactive, and practical.
Serge translates theory into realistic situations and change processes. He combines strategic insight with practical experience.
His goal is to increase effectiveness in practice. He encourages knowledge sharing and creates a safe learning environment.
Adam Cornelissen
Adam is a cybersecurity expert with experience in IT, government, agribusiness, and defense.
He provides training in ethical hacking and cyber defense. His approach focuses on recognizing and neutralizing threats.
Adam combines technical knowledge with understandable explanations. He emphasizes ethics and responsibility in cybersecurity.
His training courses are practical and applicable. Adam teaches participants to think like a hacker in order to protect organizations.
Andrea Krush
Andrea began her career in IT in education and has been focusing on information security and cybersecurity since 2011.
She has worked as a CISO, Information Security Manager, and consultant. Andrea teaches in the Information Security Management Expert program. Her lessons are interactive and focused on practical applicability.
She believes in multidisciplinary collaboration and future-proof leadership. Theory is linked to concrete applications in organizations. Andrea encourages learning from and with each other.
Annelies Heek
Annelies is a lecturer and consultant at Fox-IT and teaches IT Security at the Amsterdam University of Applied Sciences.
She translates complex security issues into clear projects. Her approach is integral and focused on collaboration within organizations. She helps participants gain insight into current security challenges.
Her training courses are interactive and practice-oriented. She encourages learning from each other's perspectives.
Annelies creates an open and successful learning environment.
Arjen Verhiel
Arjen has been a network consultant since 1997 and specializes in (software-defined) networks and security.
He combines technical knowledge with communication skills. Arjen provides training courses such as CISSP, CCSP, and ITSP.
He links theory to practical experience from various organizations. His lessons contain many examples and anecdotes. Arjen provides understandable explanations of complex topics. He encourages educational discussions during his training courses.
Chris Karelse
Chris is an expert in security awareness and behavior, with experience at Rabobank and Viterra.
He is the founder of Security Awareness NL and has won international awards. Chris provides training courses on the human factor in security. He combines theory with practical examples and behavioral insights.
His lessons are interactive and focused on awareness and behavioral change. Chris believes that technology alone is not enough for effective security.
He encourages a deeper understanding of the human side of security.
Chris Wauters
Chris is a senior manager with 20 years of experience in IT, security, and digital transformation.
He provides training to management and staff on security essentials. His courses are practical and highly interactive.
Chris combines theory with practical experience from the public and private sectors. He is a lecturer at the Security Academy and a member of the advisory committee. His lessons are applicable and focused on collaboration.
Chris attaches great importance to a good atmosphere and learning enjoyment.
Demi Grandiek
Demi is a lawyer and consultant with expertise in privacy and IT.
She translates complex legal issues into understandable language. She provides training courses such as Privacy & Data Protection and Information Security. Her approach is pragmatic and focused on applicability.
Demi combines practical examples with clear explanations. She encourages interaction and knowledge sharing.
Her goal is for participants to be able to do their work with more confidence and knowledge.
Dennis Boerboom
Dennis has more than 30 years of experience in IT and 15 years in information security.
He works as an Information Security Officer, consultant, and trainer. His training courses, such as CISSP, focus on translating theory into practice.
Dennis emphasizes communication, collaboration, and solution-oriented thinking. He covers both exam preparation and practical application.
His style is pragmatic and results-oriented. Dennis encourages critical thinking and discussion.
Dennis Zandvliet
Dennis started as an assistant accountant and progressed to become a freelance consultant in information security, privacy, and IAM.
He advises on legislation, certification, and risk management. Dennis often acts as a link between stakeholders. His training courses contain many practical examples.
He helps participants translate the material to their own work environment.
Dennis attaches great importance to knowledge transfer. Interaction between teacher and students is central.
Diederik Perk
Diederik is a security professional with experience as a consultant, risk manager, and in the threat landscape.
He offers practical training courses with current examples. His approach is analytical, critical, and methodical.
Diederik emphasizes applicable concepts and skills. He encourages insight and a perspective for action. His lessons are interactive and tailored to practical situations. Diederik connects theory with realistic situations.
Erik Klein
Erik is experienced in IT Service Management and works as a lead auditor and ISMS consultant.
He conducts audits for ISO 27001, NEN 7510, and ISO 27701. His approach is people-oriented and results-oriented.
Erik actively involves project teams in improvements and best practices. He provides training for the Security Academy and Security Coaches.
His style is coaching-oriented and practical. Erik combines knowledge transfer with guidance in change.
Ferdinand Uittenbogaard
Ferdinand is a security auditor, part-time CISO, and privacy specialist with 25 years of experience in ICT.
He has a legal background and provides training in security, auditing, and privacy. His lessons are based on evidence and critical thinking.
Ferdinand asks questions such as “How do you know that?” to encourage participants to reflect. He emphasizes the importance of certification and knowledge transfer. His style is no-nonsense and focused on practical applicability.
He makes complex topics understandable and engaging.
Frank Spuls
Frank has been a trainer since 1995 and a consultant since 2016, with experience in process optimization, Microsoft 365, and security assessments.
He works as a Security Awareness Professional at Rabobank. Frank provides training courses such as NIS2 Certified Professional and Security Essentials.
His lessons are structured and tailored to the level of the participants. He integrates practical experience from various sectors.
Frank attaches great importance to a safe group atmosphere and clear learning objectives. Interaction and knowledge sharing are central.
Frank van der Roest
Frank is a security consultant at ING and responsible for security awareness and training.
He combines practical experience with teaching at the Security Academy. Frank teaches the ISM curriculum and develops internal training materials.
His lessons focus on insight and exam preparation. He uses stories, diagrams, and humor to make the material accessible.
Frank wants participants to take something valuable away from the training. He creates a pleasant and educational atmosphere.
Gemma Jansen
Gemma has extensive experience as a Business Process Manager and works at the intersection of business and ICT.
She focuses on structural improvements within organizations. Gemma consciously chose the field of information security because of its complexity and diversity.
She emphasizes the importance of collaboration and stakeholder management. Her approach is pragmatic and results-oriented.
She helps organizations to embed change. Gemma combines her roles as CISO, coach, and teacher.
Henk-Jan van der Molen
Henk-Jan is a lecturer at the Security Academy and has nearly 25 years of experience in IT, consultancy, privacy, and information security.
He connects theory with practice and emphasizes synergy between departments. Henk-Jan has worked in government and business and is certified as CISSP and CISM. He has published articles on IT, audits, and information policy.
His lessons focus on effective and efficient security. He advocates early integration of security into projects. Henk-Jan uses practical examples to clarify the course material.
Jan van Twillert
Jan van Twillert has been the director and owner of OrcaSecure BV since 2014, where he works as an instructor, trainer, and security consultant. In 2012, he developed the Predictive Profiling course under ESIF license. Previously, he served as a security consultant and interim Security Manager at Promundo and as Head of Security at the National Institute for Public Health and the Environment (RIVM), where he introduced a training program for security officers.
He began his career in the Royal Netherlands Navy and has extensive experience in the private security sector. Jan is certified as a Certified Protection Professional (CPP) and has completed various international trainings, including Predictive Profiling and Security Questioning. He authored the book Be Prepared for the Unexpected and is a member of the National Think Tank for Integrated Security.
Jeroen Overeem
Jeroen Overeem is an experienced trainer with a strong background in project management and information security, particularly within government and healthcare sectors.
He teaches courses on Information Security Foundation and Privacy & Data Protection Foundation. Jeroen emphasizes the universal importance of data protection, especially in healthcare settings.
His training approach involves exploring shared challenges and success stories across different organizations. He values the power of relatable insights and the “aha” moments that drive lasting understanding.
Beyond knowledge transfer, Jeroen focuses on the advisory process and relationship-building. His goal is to empower participants to apply both technical and interpersonal skills effectively in their roles.
Martin Goudzwaard
Martin is an independent entrepreneur at the intersection of information security and organizational development.
He has experience as a people manager, trainer, and consultant in government and business. Martin teaches policy modules in the Information Security Management track.
His training courses are practice-oriented and tailored to the development of the participant. He uses current case studies and lessons learned.
The quality of teaching materials and the learning process are central. Martin guides participants from intake to certification.
Marieka Baars
Marieka is an expert in emergency response (BHV) and founder of a consultancy firm. She has advised dozens of organizations on BHV and emergency plans.
Her approach is pragmatic, realistic, and focused on direct applicability. She clearly explains what is required by law and what choices organizations have.
Marieka helps organizations to organize emergency response effectively and independently. She combines facility experience with emergency response expertise. Her training courses contribute to safety and continuity.
Marco Appeldorn
Marco is an independent consultant with experience in IT Governance, Cybersecurity, Architecture, and Cloud.
He provides training on topics including ISO 27001, Risk Management, and Business Continuity. Marco combines technical and business experience and switches easily between both worlds.
His lessons are practical, interactive, and rich in examples. He focuses on offering concrete solutions to current challenges.
Marco strives to build strong connections with his students. He shares his knowledge with enthusiasm and humor.
Marcel Feenstra
Marcel is an IT professional and college lecturer with over 30 years of experience. He provides training courses such as CISA, CISM, and CISSP.
Marcel makes complex material understandable with humor and practical examples. He emphasizes the importance of understanding over mere exam knowledge.
His lessons are structured and tailored to the level of the group.
Marcel regularly checks that everyone understands the material. He creates a pleasant and educational atmosphere.
Johan Bakker
Johan Bakker has over 15 years of experience in Information Security and Business Continuity, including roles as consultant, policy advisor, and until 2012 as CISO at KPN. Since 2012, he has worked as an independent consultant and trainer.
He teaches several CISSP modules and the Organising Information Security module in the ISME postgraduate program. In his classes, Johan brings theory to life with practical examples and anecdotes to enhance applicability.
He believes theory only has value when it can be applied effectively within an organization’s context. Therefore, he emphasizes understanding business goals, drivers, and culture. His approach is interactive: explaining, discussing, and reflecting until students can confidently apply the material in their own organizations.
Joop Franke
Joop Franke has been dedicated to Business Continuity Management (BCM) since the mid-1980s, inspired by a major IT incident at his former employer.
He is an Honorary Fellow of the Business Continuity Institute and a leading developer of BCM education programs. Joop is known for his engaging teaching style and is sometimes referred to as an “entertrainer.”
His guiding principle is: “The primary business of every business is to stay in business.” He shares his extensive experience to help students prepare their organizations for potential disruptions.
Joop also leads the development of the Business Continuity Certification track at the SECO-Institute. His sessions combine deep expertise with practical relevance.
Kenneth Smit
Kenneth is a passionate professional in the field of information security and privacy, with a strong focus on the intersection of people and technology.
He thrives on integrating diverse domains such as privacy, security, and organizational dynamics. Known for his pragmatic approach, Kenneth emphasizes solution-oriented thinking while ensuring essential actions are taken.
His training sessions are designed to be immediately applicable, combining theoretical content with practical insights. Even when the material is complex, Kenneth ensures it remains engaging through hands-on examples.
He encourages interaction and discussion, highlighting real-world deviations from theory to enhance learning. Participants leave his sessions equipped with both theoretical understanding and practical skills.
Lex Schampers
Lex has more than 40 years of experience in organizational development and crisis management.
He combines knowledge of financial control, IT, and consulting. His strength lies in making complex crisis situations manageable.
Lex teaches students how to respond effectively to incidents. His training courses combine theory with practical exercises.
He focuses on developing knowledge and skills. Humor and trust play an important role in his lessons.
Luuk Danes
Luuk is a cryptography expert and founder of Cryptography in Context.
He helps organizations with the strategic application of encryption and PKI. His training courses focus on practical implementation and key management.
Luuk bridges the gap between technology and business. He developed the Encryption & PKI Practitioner course.
His lessons are up-to-date, applicable, and tailored to practical situations. Luuk encourages the direct application of knowledge in organizations.
Mercedes Grootscholten
Mercedes has experience as head of communications at the Amsterdam District Court and as spokesperson at ProRail.
She provides training in crisis communication with an emphasis on preparation and role distribution. Her lessons combine theory with practical examples.
She encourages discussion and reflection on case studies. Mercedes helps participants build confidence in crisis situations. She focuses on applicable communication skills. Her approach is clear and practical.
Michael Pols
Michael is a consultant with experience in risk management, privacy, and governance.
He works at the intersection of business and IT. Michael gives training courses such as Data Protection Foundation and Information Security Management.
His approach is pragmatic and tailored to organizational culture. He links theory to practical examples.
Michael encourages interaction and applicability. His lessons focus on the effective implementation of security and privacy.
Peter de Witte
Peter worked as a software developer for 16 years and is now an ethical hacker. He gives training courses focused on understanding digital security.
Peter emphasizes understanding systems and security methods. His lessons are positive, supportive, and interactive.
He encourages active participation and problem-solving thinking. Peter offers practical assignments to apply knowledge directly.
His goal is to inspire students to contribute to digital security.
Rob van Os
Rob is a cybersecurity professional with experience in cyber defense and security operations.
He is the product owner of the Cyber Defense Center at de Volksbank. Rob teaches SOC training courses and combines theory with practical experience.
He has developed frameworks and methodologies for SOC teams. His training courses offer hands-on experience and applicable knowledge.
Rob focuses on effectiveness within security operations. He supports students in both theory and practice.
Sjoerd van der Schuit
Sjoerd has extensive experience in crisis management, gained as an army officer and regional commander in the fire service.
He has led countless crises and disasters and advised administrators and professionals.
His training courses focus on the entire crisis process, from start to recovery. Sjoerd emphasizes the importance of training and reflection to prevent mistakes. He encourages participants to think critically about their actions.
His approach is practical and focused on personal development. Mistakes are seen as learning opportunities.
Steffan Karger
Steffan is an IT security consultant with experience in digital forensic investigation and incident response, among other things.
He worked at Fox-IT as a security architect and developer of cryptographic equipment.
His training courses combine strategic insight with technical depth. Steffan explains complex topics clearly, using many practical examples. He encourages interaction and uses visual aids.
His goal is for participants to not only reproduce knowledge, but also understand it. He has been teaching for over 10 years.
Tess Sluijter-Stek
Tess specializes in PKI, privileged access management, and application security. She has experience with pentests, DevSecOps, and security culture programs.
Tess provides training in ethical hacking, secure coding, and foundation courses. She makes information security accessible to a wide audience.
Her lessons are enthusiastic, clear, and focused on immediate applicability. Tess encourages engagement and motivation among participants.
She wants students to be able to immediately apply what they have learned after the course.
Theo Heinsbroek
Theo is the owner of SeKuRiGo and advises organizations on information security, risk management, and IT auditing.
He has a background in the Dutch Ministry of Defense and the Royal Netherlands Navy. His approach focuses on risk management rather than checklists.
Theo combines theory with practical experience and encourages active participation. He challenges students to bring in their own situations.
His training courses are interactive and practice-oriented. Theo helps organizations to effectively operationalize laws and regulations.
Tim Vermeulen
Tim is a security consultant with experience in awareness, privacy, and risk-driven implementations.
He has worked for organizations such as Logica, Tata Steel, and Schiphol. Tim uses a pragmatic approach that aligns with the objectives of organizations.
His training courses are clear, up-to-date, and tailored to different organizational levels. He explains complex material in an understandable way.
Tim shares practical experiences to make the course material concrete. He focuses on strengthening security awareness.
Vincent Alwicher
Vincent has been active in information security since 1997 and has worked as a CISO, audit manager, and security architect.
He has international experience in sectors such as industry, telecom, and government. Vincent combines technical knowledge with strategic insight.
His training courses cover governance, risk management, and maturity enhancement. He emphasizes the importance of awareness and change management.
Vincent teaches Information Security Foundation and IT Security Foundation. He translates theory into practice with recognizable examples.