Did you know that the Flemish government pays for up to half of your cybersecurity investment? Through the VLAIO Cybersecurity Improvement Program, Flemish SMEs receive a 50% subsidy on professional cybersecurity guidance. Pathways range from €7,100 to €39,900 (excluding VAT) and are implemented by VLAIO-recognized service providers. Depending on your needs, you choose from three packages: START, MEDIUM or PLUS. Below you can read exactly what each package entails, what you effectively pay and how to apply for the pathway.
What is a VLAIO cybersecurity improvement program?
A cybersecurity improvement program is an individual coaching program in which a VLAIO-approved service provider analyzes your company’s cybersecurity, draws up an action plan and (depending on the package chosen) guides you in implementing improvements. VLAIO subsidizes 50% of the cost price for SMEs and bespoke companies. Non-SMEs covered by the NIS2 directive receive 35% intervention.
The program has existed since 2020 and was expanded in January 2026. VLAIO selected 10 new service providers through a framework agreement, so there are now 19 approved partners available. This expansion was necessary: more and more Flemish companies want to structurally improve their cybersecurity, driven by the increasing threats as well as the NIS2 obligations that come into effect from April 18, 2026.
The improvement process is explicitly not a one-time scan. The goal is a sustainable improvement of your cybersecurity maturity, with a multi-year action plan as a basis. That makes the difference with a separate cybersecurity audit: where an audit provides a snapshot, the improvement track offers a path from analysis to implementation.
Three packages: START, MEDIUM and PLUS
VLAIO offers the cybersecurity improvement pathway in three versions. Each package builds on the previous one, so you choose the pathway that fits the maturity and complexity of your organization.
START: initial analysis and action plan
The START package is the most approachable entry-level package. A licensed service provider analyzes your company’s current cybersecurity maturity and creates a multi-year action plan. Upon completion, you will know exactly where your vulnerabilities are and which steps should be prioritized.
The START package is suitable for companies that do not yet have a cybersecurity policy and want a clear overview first. Within this package there is no room for hands-on guidance in solving the identified problems. You do that yourself afterwards (possibly with your regular IT partner) or via an upgrade to MEDIUM or PLUS.
Cost: €7,100 to €11,900 (excl. VAT), depending on the service provider. After 50% VLAIO subsidy, you will pay: €3,550 to €5,950.
MEDIUM: analysis, action plan and guidance
The MEDIUM package combines the full analysis and action plan from START with concrete guidance on solving a limited number of priority security issues. Upon completion, your cybersecurity maturity is already noticeably improved.
This package targets companies that want to take their first steps and/or have a less complex IT/OT environment. You get three parts: a thorough (technical) analysis, a multi-year action plan, and scope for advice and guidance on eliminating key risks.
Cost: €16,600 to €28,600 (excluding VAT). After 50% VLAIO subsidy, you will pay: €8,300 to €14,300.
PLUS: the most comprehensive route
The PLUS package provides the most scope for advice and guidance on resolving identified security issues. Like MEDIUM, it includes a thorough analysis and action plan, but significantly more time is provided for implementation guidance.
This package is ideal for enterprises with more complex IT environments, mission-critical systems or IoT links. Think manufacturing companies with OT systems, software companies with extensive application architectures or organizations that fall under NIS2 and need to be compliant quickly.
Cost: €26,500 to €39,900 (excluding VAT). After 50% VLAIO subsidy, you will pay: €13,250 to €19,950.
Good to know: most service providers also offer extension packages. You can combine these with MEDIUM or PLUS to address additional areas of improvement. In that case, the total cost (without VLAIO intervention) can be up to €60,000.
Calculation examples: what do you effectively pay?
Concrete figures help with the decision. Below are three scenarios that clarify the subsidy impact.
Scenario 1 – Retail with 30 employees (START) Your company has a limited IT environment and wants an initial analysis. The service provider offers the START package at €9,500. VLAIO subsidy (50%): €4,750. Your investment: €4,750 (excluding VAT) for a complete cybersecurity analysis with multi-year action plan.
Scenario 2 – Manufacturing company with 120 employees (MEDIUM) You have manufacturing IT, an ERP system and want to implement immediate improvements in addition to the action plan. The offer for MEDIUM is €22,000. VLAIO grant (50%): €11,000. Your investment: €11,000 for analysis, action plan and guided implementation of the priority measures.
Scenario 3 – IT service provider with 80 employees, NIS2 mandatory (PLUS) Your organization falls under NIS2 and needs to achieve demonstrable compliance quickly. The PLUS package costs €35,000. VLAIO subsidy (50% as SME): €17,500. Your investment: €17,500 for a complete program including extensive implementation guidance.
Does your company qualify?
The cybersecurity improvement programs are accessible to a wide range of Flemish enterprises. The main conditions at a glance:
You are eligible if your company is a Flemish SME or custom company (including non-profit organizations). The subsidy amounts to 50% of the training costs. Are you not an SME but do fall under the NIS2 directive? Then you are also eligible, with an intervention of 35%, provided that you do not yet have an elaborated cybersecurity policy or an existing cybersecurity roadmap.
Important: The track can only be subsidized if you work with one of the 19 service providers approved by VLAIO. You cannot just choose any external partner. In addition, the improvement trajectories fall under the European de minimis regulations, which means that your total de minimis support cannot exceed €300,000 over three years.
How do you request a cybersecurity improvement program?
The application process is done directly through the approved service provider, not through a separate grant office. This makes the process simpler than many other grants.
Step 1: Choose a service provider. Consult the list of 19 approved service providers on the VLAIO website and contact the partner that best fits your profile and sector.
Step 2: Intake interview. The service provider will determine during a thorough discussion whether your company qualifies and which package (START, MEDIUM or PLUS) best suits your needs.
Step 3: Quote. Based on the intake interview, the service provider prepares an offer according to the chosen package.
Step 4: Approval by VLAIO. The quotation is submitted to VLAIO for approval. Only after approval by both your company and VLAIO can the process begin.
Step 5: Implementation. The service provider carries out the process: analysis, action plan and (for MEDIUM/PLUS) implementation guidance. VLAIO pays the grant directly to the service provider, so you only pay your own share.
What services fall within an improvement program?
The content of an improvement program will be tailored to the needs of your organization. Various cybersecurity services can be covered within the three packages. Think of a comprehensive security analysis of your IT infrastructure, a pen test to identify vulnerabilities, guidance in drafting a security policy, security awareness training for employees, or advice on NIS2 compliance and the CyberFundamentals framework.
The specifics depend on the maturity analysis and action plan. A manufacturing company will have different priorities than a software developer. The advantage of the improvement trajectory over separate assignments is precisely this coherence: you are not investing in isolated actions, but in a well thought-out trajectory that builds on an objective baseline measurement.
SME portfolio as an additional option
In addition to the improvement program, as an SME you can also use the VLAIO SME portfolio for cybersecurity advice and training. Since February 1, 2026, the advisory component of the SME portfolio has been reserved exclusively for cybersecurity. Small enterprises receive 45% subsidy, medium-sized enterprises 35%, with a maximum of €7,500 per year.
The SME portfolio and the improvement track are two separate subsidy instruments that co-exist. For example, you can combine an improvement track with an ISO 27001 certification track through the SME portfolio, or have an additional security awareness training course subsidized. Note that both instruments fall under the de minimis rule, so the total support over three years is capped.
Why start an improvement program now?
The momentum for cybersecurity investments is particularly favorable. The NIS2 compliance deadline of April 18, 2026 is fast approaching and imposes concrete obligations around cybersecurity governance, incident reporting and supply chain security. At the same time, the VLAIO Cybersecurity Barometer shows that nearly half of Flemish enterprises have experienced a cyber attack. The combination of legislative pressure and real threats makes the improvement process a logical first step.
Moreover, subsidization is not unlimited. The pathways are subject to European de minimis regulations and the number of approved service providers is fixed through a framework contract. Those who wait risk longer waiting times or exhaustion of the available budget.
Cyberplan is an approved service provider for VLAIO Cybersecurity Improvement Programs. We guide Flemish SMEs from the initial analysis to the implementation of concrete improvements. With a team of 22 certified experts (OSCP, CISSP, CEH, CISM), we combine technical depth with understandable advice.
Schedule a free orientation meeting – we guide you from application to implementation and ensure that you take maximum advantage of the 50% VLAIO subsidy.
Frequently asked questions about the VLAIO cybersecurity improvement program
What is a VLAIO cybersecurity improvement program?
A cybersecurity improvement program is a subsidized guidance program in which a VLAIO-approved service provider analyzes your cybersecurity, draws up a multi-year action plan and (in the case of MEDIUM and PLUS) guides you through implementation. VLAIO subsidizes 50% of the costs for SMEs and customized companies.
How much funding do I get on a cybersecurity improvement program?
SMEs and custom firms receive 50% subsidy on total pathway costs. Non-SMEs covered by the NIS2 directive receive 35% intervention. Pathway costs range from €7,100 (START) to €39,900 (PLUS), excluding VAT.
What is the difference between START, MEDIUM and PLUS?
START (€7,100-€11,900) includes a maturity analysis and action plan. MEDIUM (€16,600-€28,600) adds limited implementation guidance. PLUS (€26,500-€39,900) provides the most comprehensive guidance on security issues. All amounts are exclusive of VAT and before subsidy.
Is my company eligible for an improvement program?
Flemish SMEs, custom companies and NPOs are eligible for 50% funding. Non-SMEs that fall under NIS2 and do not yet have a developed cybersecurity policy or roadmap are eligible for 35%. You must work with one of the 19 approved VLAIO service providers.
How do I apply for a cybersecurity improvement program from VLAIO?
Contact an approved service provider directly. After an intake interview, the service provider prepares an offer that is submitted to VLAIO for approval. After approval, the process starts. The grant application is thus made through the service provider, not through a separate counter.
