Our cybersecurity trainers are seasoned professionals with extensive backgrounds in cybersecurity, risk management, information security and data-protection. They bring hands-on experience from both public and private sectors, ensuring that every course is grounded in real-world relevance.
Our trainers hold globally-recognised certifications reflecting their deep technical knowledge and experience with best practices in security. Whether you are new to security or advancing your expertise, they are here to guide your learning journey with clarity, confidence, and credibility. Below, you can learn more about a small selection of our cybersecurity trainers.
Bas van den Berg
Bas started as a developer and progressed to become a security consultant focusing on secure development and security assessment.
He combines technical knowledge with insight into human behavior. His training courses are interactive and focused on practical applicability.
Bas explains complex topics using examples. He emphasises the importance of security in a data-driven world.
His goal is to make participants aware and skilled in digital security. He creates a learning environment in which knowledge sharing is central.
Edo-Jan Koster
Edo-Jan has over 25 years of experience in IT and currently works as a Lead Auditor at DEKRA, where he specialises in information security, quality, IT service management, and continuity management.
His training approach focuses on combining standards with organisational dynamics, where he links theory to practice with recognisable, relatable examples.
Edo-Jan brings a wealth of experiences to the courses he leads, having worked in both large and small organisations, and in the public and private sectors. Like several of our cybersecurity trainers, his training courses are interactive and practice-oriented, where he encourages knowledge-sharing between and discussion amongst course delegates.
Erik Veldhuis
Erik is a crisis management expert at the IND and draws on past experience gained in his time at PwC.
He focuses on the pragmatic design of crisis management and business continuity processes. His training courses blend sound theoretical principles with practical, actionable advice.
Erik creates a safe and collaborative learning environment where participants learn from one another and build confidence in their ability to respond to crises. With an integrated, practice-oriented approach, Erik helps organisations prepare for and manage disruptions effectively.
He encourages participants to apply their learning and drive meaningful change within their own organisations.
Manon de Vries
Manon is a researcher in applied cryptography at TNO, and has extensive experience as a pentester, security engineer, and privacy officer.
She delivers training courses on encryption and PKI, bridging the gap between theory and practical implementation. In her sessions, she emphasises the importance of context and the real-world applicability of cryptography.
Known for her integrity and focus on practical solutions, her lessons are accessible while being structured around realistic, real-world examples. Her approach combines technical knowledge and expertises with insights into organisational dynamics.
Mariëtte Neumann
Mariëtte is the Managing Director of KCS Marketing, where she is an expert in public relations and crisis communication.
In her role, she translates strategy into concrete plans and shares her knowledge in training courses.
Her lessons combine theory with practical examples and exercises, and she places a strong emphasis on strengthening communication skills in crisis situations.
Mariëtte emphasises the importance of careful information transfer, and her training courses are known for being varied and practice-oriented.
Jochen den Ouden
Jochen is a Certified Ethical Hacker who specialises in privacy, ethical hacking, and secure programming. He blends hands-on experience with a passion for teaching, always highlighting the human side of IT security.
His training courses focus on building awareness and encouraging participants to think like a hacker. Jochen believes that effective information security depends on people, technology, and organisational context.
Known for his clear and sociable style, he delivers engaging sessions in ethical hacking, secure coding, and broader information security.
Serge Buitenhuis
Serge is a consultant in the public and private security sector with more than 10 years of experience in security strategy.
In his career, he has trained over 150 professionals in security risk management, and his hallmarked by his training courses that are energetic, interactive, and practical.
Serge translates theory into realistic situations and change processes, by combining strategic insight with practical experience.
His goal is to increase effectiveness in practice and encourages knowledge sharing and creates a safe learning environment.
Rob van der Staaij
Rob is the founder of Stysec B.V. and a seasoned expert in cybersecurity, identity and access management, risk management, and privacy.
As an affiliate of the University of Groningen, he contributes regularly to academic and professional discourse through publications on cybercrime.
Rob’s training sessions are known for their clarity and structure, making complex topics accessible to learners at all levels. He places strong emphasis on the critical role of cybersecurity in today’s digital world, and fosters an interactive learning environment where discussion and engagement are key. His courses are designed to be participatory, with high expectations for student involvement and curiosity.
Oscar Koeroo
Oscar serves as the Group CISO at the Ministry of Health, Welfare and Sport, where he is responsible for the development of the information security strategy. With a strong foundation in both technical and strategic domains, he bridges the gap between policy and practice.
Previously, he held roles at KPN and Nikhef, where he focused on cryptography and cybersecurity. His expertise spans PKI, certificate authorities, and incident management.
Oscar's training sessions are known for their depth and practicality. A leading authority in the field of information security, he possesses a talent to explain complex topics with clarity.
Adam Cornelissen
Adam is a cybersecurity expert with extensive experience in IT, government, agribusiness, and defence.
He specialises in providing training in ethical hacking and cyber defensce, where his approach focuses on recognising and neutralising cybersecurity threats.
Adam combines his technical knowledge with understandable explanations, and in his teachings, he emphasises ethics and responsibility in cybersecurity.
Andrea Krush
Andrea Krush began her career in IT in education, and since 2011 has shifted her focus to information security and cybersecurity.
Her past experiences include working as a CISO, an Information Security Manager, and consultant in the information security and cybersecurity space.
Andrea teaches the Information Security Management Expert course, where she delivers interactive lessons that are focused on practical applicability.
Annelies Heek
Annelies Heek is a lecturer and consultant at Fox-IT and also teaches IT Security at the Amsterdam University of Applied Sciences.
In her teachings, she takes an integrated, collaborative approach, turning complex security issues into clear, actionable projects.
Her interactive, practice-oriented training helps participants understand today’s security challenges while encouraging them to learn from each other’s perspectives.
Arjen Verhiel
Arjen has worked as a network consultant, specialising in software-defined networks and security since 1997.
He combines deep technical expertise with strong communication skills, delivering training courses such as CISSP, CCSP, and ITSP. By linking the theoretical and practical, Arjen makes complex topics understandable through clear explanations, practical examples, and engaging anecdotes.
His interactive teaching style encourages discussion and creates a dynamic learning environment.
Chris Karelse
Chris is a leading expert in security awareness and behaviour, with professional experience at Rabobank and Viterra. As the founder of Security Awareness NL and the recipient of many international awards, he delivers training that is focused on the human element in security.
By combining theory with practical examples and behavioural insights, his lessons are interactive and focused on awareness and behavioural change.
Chris believes that technology alone is not enough for effective security and encourages a deeper understanding of the role the human perspective plays in this.
Chris Wauters
With 20 years of experience in IT, security, and digital transformation, Chris Wauters is a senior manager.
He delivers security essentials training for both management and staff, blending theory with practical, real-world experience from both the public and private sectors. In addition to being a lecturer at the Security Academy, he is also a member of the advisory committee.
His lessons are highly interactive, practical, and have as strong focus on collaboration between delegates.
Demi Grandiek
Demi Grandiek is a lawyer and consultant with expertise in privacy and IT.
She breaks down complex legal constructs into understandable language by providing training in Privacy and Data Protection, and Information Security.
In her teaching, she follows a pragmatic approach where her focus is on applicability.
Demi’s sessions encourage interaction and knowledge sharing amongst delegates, empowering course participants to perform their roles with greater confidence and expertise.
Dennis Boerboom
Dennis Boerboom brings a wealth of experience to his sessions, with more than 30 years’ IT experience and 15 years’ experience in information security.
In addition to being a trainer, he works as an Information Security Officer and consultant. Dennis delivers training courses such as CISSP with a clear focus on turning theory into practice.
He combines exam preparation with real-world application, emphasising communication, collaboration, and solution-oriented thinking.
Dennis Zandvliet
Beginning his professional career as an assistant accountant, Dennis Zandvliet later progressed to become a freelance consultant in information security, privacy, and IAM.
In his current role, he advises organisations on legislation, certification, and risk management, often serving as an important link between stakeholders.
In his training courses, he places a strong emphasis on effective knowledge transfer, making interactions between participants a central part of the learning experience.
Diederik Perk
Diederik is a security professional with extensive experience as a consultant, risk manager, and other roles in the broader cyberthreat landscape.
With his analytical, critical, and methodical approach, he offers practica and interactive training courses that highlight real-world examples and that emphasise applicable concepts and skills.
Erik Klein
Erik Klein brings extensive experience in IT Service Management, and works as a lead auditor and ISMS consultant.
He conducts audits for ISO 27001, NEN 7510, and ISO 27701 with a people-focused, results-driven approach.
By actively involving project teams in improvements and best practices, he ensures a lasting impact for businessas.
As a trainer, he adopts a coaching-oriented, practical style that blends clear knowledge transfer with hands-on guidance in change management.
Ferdinand Uittenbogaard
Ferdinand is a security auditor, part-time CISO, and privacy specialist with over 25 years of experience in ICT.
With a strong legal background, he provides training in security, auditing, and privacy. Using evidence and critical thinking as the basis of his teachings, Ferdinand encourages participants reflect on their own knowledge by emphasising the importance of certification and knowledge transfer.
Frank Spuls
Frank Spuls has been a trainer since 1995 and a consultant since 2016, bringing extensive experience in process optimisation, Microsoft 365, and security assessments.
As a Security Awareness Professional at Rabobank, he delivers courses such as NIS2 Certified Professional and Security Essentials.
His structured lessons are tailored to participants’ respective levels and enriched with practical insights from diverse sectors.
Frank van der Roest
Frank is a security consultant at ING, responsible for security awareness and training.
He combines extensive practical experience into his role as a trainer, where he teaches the ISM curriculum and develops internal training materials.
His lessons focus on building insight and preparing participants for exams, using stories, diagrams, and humor to make complex topics accessible..
Gemma Jansen
Gemma Janse has extensive experience as a Business Process Manager, where she works at the intersection of business and ICT, a career she chose based on the complexity and diversity of information security as a field.
In her role, she focuses on structural improvements within organisations where she emphasises the importance of collaboration and stakeholder management.
Henk-Jan van der Molen
Henk-Jan van der Molen has nearly 25 years of experience in IT, consultancy, privacy, and information security.
His previous experience includes work in both government and private businesses, and he is certified as CISSP and CISM. Henk-Jan bridges theory and practice, with a strong focus on fostering synergy between departments.
He has published multiple articles on IT, audits, and information policy, and his lessons centre on building effective and efficient security.
Jan van Twillert
Jan van Twillert is the director and owner of OrcaSecure BV, where he has worked as an instructor and security consultant since 2014. In 2012, he developed the Predictive Profiling course in 2012 under ESIF license. Jan previously served as Head of Security at the National Institute for Public Health and the Environment (RIVM) and as a security consultant for Promundo.
His career began in the Royal Netherlands Navy, followed by extensive experience in private security. He is a Certified Protection Professional (CPP), has completed international training in Predictive Profiling and Security Questioning, and authored Be Prepared for the Unexpected. Jan is also a member of the National Think Tank for Integrated Security.
Jeroen Overeem
Jeroen Overeem is an experienced trainer with a strong background in project management and information security, with particular expertise in the government and healthcare sectors. In his capacity as a trainer, he leads courses that cover the foundations of information security and privacy and data protection.
His training approach draws on shared challenges and success stories across organisations, creating relatable insights that lead to lasting understanding.
Beyond knowledge transfer, Jeroen prioritises advisory support and relationship-building, aiming to empower participants to apply both technical and interpersonal skills effectively in their roles.
Johan Bakker
Johan Bakker has over 15 years’ experience in information security and business continuity, including roles as consultant, policy adviser and, until 2012, Chief Information Security Officer at KPN. Since then, he has worked as an independent consultant and trainer, delivering CISSP modules and the Organising Information Security module for the ISME postgraduate programme.
Johan brings theory to life with practical examples and believes it only has value when applied effectively within an organisation’s context. His interactive approach ensures participants can confidently apply what they learn in their own organisations.
Joop Franke
Inspired by a major IT incident at a former employ, Joop Franke has been dedicated to Business Continuity Management (BCM) since the mid-1980s.
He is an Honorary Fellow of the Business Continuity Institute and a leading developer of BCM education programs.
Guided by the principle that ‘the primary business of every business is to stay in business,’ he draws on extensive experience to help students prepare their organisations for potential disruptions.
Kenneth Smit
With a strong focus on the intersection of people and technology, Kenneth Smit is a passionate professional in the field of information security and privacy.
Known for his pragmatic approach, Kenneth emphasises solution-oriented thinking while ensuring essential actions are taken.
His training sessions are designed to be immediately applicable, combining theoretical content with practical insights. Kenneth encourages interaction and discussion, highlighting real-world deviations from theory to enhance learning.
Lex Schampers
Lex Schampers has more than 40 years of experience in organisational development and crisis management.
With a background spanning financial control, IT, and consulting, he specialises in making complex crises manageable.
In his teachings, Lex equips students with practical strategies for incident response through training that combines solid theory with interactive exercises..
Luuk Danes
Luuk Danes is a cryptography expert and the founder of Cryptography in Context.
In his capacity as founder and expert, he helps organisations with the strategic application of encryption and PKI.
By bridging the gap between technology and business, his training courses focus on practical implementation and key management of strategies.
Using his extensive expertise, Luuk developed the Encryption & PKI Practitioner course.
Marcel Feenstra
Marcel Feenstra is an IT professional and college lecturer with over 30 years of experience. He provides training for courses that cover CISA, CISM, and CISSP.
Marcel makes complex material accessible by combining humour with practical examples. He prioritises genuine understanding over rote exam preparation, structuring his lessons to match the level of each group.
By regularly checking comprehension, Marcel ensures that participants stay engaged and supported.
Marco Appeldorn
Marco Appeldorn is an independent consultant with experience in IT governance, cybersecurity, architecture, and cloud. He provides training on topics that include ISO 27001, risk management, and business continuity.
In his teachings, Marco seamlessly bridges technical expertise and business insight.
His lessons are practical, interactive, and filled with real-world examples.
Marieka Baars
Marieka is an expert in emergency response (BHV) and founder of a consultancy firm. She has advised dozens of organisations on BHV and emergency plans.
Her approach is pragmatic, realistic, and focused on direct applicability. In her role, she helps organisations organise emergency response effectively and independently, drawing on her combined experience in facilities management and emergency response.
Her training courses strengthen safety and support continuity, making complex requirements practical and actionable.
Martin Goudzwaard
Martin is an independent entrepreneur and his prior experience includes roles as a people manager, trainer, and a consultant for both government and private businesses.
Martin teaches policy modules in the Information Security Management track. Using current case studies and lessons learned, he ensures that both the quality of teaching materials and the learning process remain central.
From intake to certification, he provides clear guidance and support, creating a structured and effective learning journey.
Mercedes Grootscholten
Mercedes brings extensive experience as Head of Communications at the Amsterdam District Court and as spokesperson for ProRail.
She delivers crisis communication training with a strong focus on preparation and clear role distribution, and her sessions blend theory with practical examples, encouraging discussion and reflection on real case studies.
Michael Pols
Working at the intersection of business and IT, Micheal Pols is a consultant with extensive experience in risk management, privacy, and governance.
In his capacity as a trainer, he leads various courses such as Data Protection Foundation and Information Security Management.
With a pragmatic style rooted in organisational culture, Michael connects theory to real‑world scenarios in an interactive learning environment.
Peter de Witte
After 16 years as a software developer, Peter now works as an ethical hacker. He delivers training courses that build a deep understanding of digital security, focusing on systems and security methods.
His sessions encourage active participation and problem‑solving and with his practical assignments, Peter helps students apply their knowledge directly to situations.
Rob van Os
With experience in cyber defence and security operations, Rob van Os is the product owner of the Cyber Defense Center at de Volksbank.
In his capacity as a trainer, Rob teaches SOC training courses. Drawing on his expertise in developing SOC frameworks and methodologies, he delivers training that blends theory with practical application.
His courses emphasise effectiveness in security operations, offering interactive, handson learning that equips students with skills they can apply immediately.
Sjoerd van der Schuit
Sjoerd brings extensive crisis management experience from his roles as an army officer and regional fire service commander.
Having led numerous crises and disasters, he has also advised administrators and professionals.
His training covers the full crisis process, from onset to recovery, with a strong emphasis on reflection and learning.
Steffan Karger
Steffan Karger is an IT security consultant and has extensive experience in digital forensic investigation and incident response.
Steffan previously worked at Fox‑IT as a security architect and developer of cryptographic equipment.
His training combines strategic insight with technical depth, explaining complex topics clearly through practical examples and visual aids.
He brings over 10 years of teaching experience to his role as a trainer.
Tess Sluijter-Stek
Tess Sluijter-Stek specialises in PKI, privileged access management, and application security, and brings experience with pentests, DevSecOps, and security culture programs to her role as a trainer.
Tess delivers training in ethical hacking, secure coding, and several foundational courses, making information security accessible to a broad audience.
Theo Heinsbroek
Theo Heinsbroek is the owner of SeKuRiGo. In this current role at the company, he advises organisations on information security, risk management, and IT auditing.
His background includes experience in the Dutch Ministry of Defense and the Royal Netherlands Navy.
Theo’s approach centres on risk management, combining theory with practical experience to encourage active participation.
With a focus on operationalising laws and regulations, Theo helps organisations translate compliance into effective action.
Tim Vermeulen
Tim Vermeulen is a security consultant with a wealth of experience in awareness, privacy, and risk-driven implementations, having held previous roles at Logica, Tata Steel, and Schiphol.
His training courses are clear, current, and tailored to different levels within an organisation.
Tim’s focus is on strengthening security awareness, ensuring participants gain both clarity and confidence.
Vincent Alwicher
Vincent Alwicher has worked in information security since 1997, serving as a CISO, audit manager, and security architect.
With extensive international experience in various sectors including telecom and government, in his teaching he combines technical knowledge with strategic insight.
Vincent teaches the Information Security Foundation and IT Security Foundation courses.
His training courses cover governance, risk management, and maturity enhancement, where he emphasises the importance of awareness and change management.