Independent cybersecurity in Luxembourg

Built for organisations that have real security obligations but no dedicated security team.

Barend van Lith

Barend van Lith, Founder of Lithsecure

Founder, Lithsecure

Barend has spent six years in Luxembourg's MSSP sector, working detection engineering and incident response across regulated client environments. His clients have been predominantly EU institutions and financial-sector firms. His technical work centres on Splunk-based detection engineering, Sigma rule development, Wazuh deployments, and Ansible-driven security automation.

Before founding Lithsecure, he ran detection and response work inside enterprise SOC environments. That is the same kind of capability NIS2 now demands at SME scale. The gap between what enterprises have always had and what mid-sized Luxembourg firms can practically deploy is what Lithsecure was built to close.

He works primarily with fiduciaries, law firms, and the IT providers that serve them. Based in Luxembourg, operating in English, French, and Dutch.

Why Lithsecure exists

Most cybersecurity firms are built to serve enterprise clients. Their tools are priced for large IT teams, their reports are written for security engineers, and their sales cycle assumes a procurement department.

Lithsecure exists for the fiduciary firm, the regional law practice, the managed service provider: fully in scope for NIS2 but with no dedicated security resource. We work directly with management, write in plain language, and price for organisations that are spending on security for the first time.

We don't resell hardware or software. We charge for time, expertise, and the outcomes that come with them. That keeps our advice independent.

Where we work

Lithsecure is based in Luxembourg and serves clients in Luxembourg, Belgium, and the Grand Region, including France (Lorraine, Champagne-Ardenne) and Germany (Saarland, Rhineland-Palatinate). We work on-site and remotely.

Most of our clients are fiduciaries, law firms, accounting practices, and the IT providers that serve them. Luxembourg firms with real security obligations but no dedicated security team.

Experience and credentials

Six years of MSSP experience

Monitoring, detection, and incident response across dozens of client environments.

NIS2 & GDPR specialisation

Practical compliance work in regulated sectors. Not just policy writing.

Luxembourg & Belgium market

We understand the local regulatory context: CNPD, ILR, NBB, and the local NIS2 transpositions.

Independent

No vendor partnerships. No hardware resale. Advice that serves your interests.

How we can help

NIS2 Compliance

A complete programme from scope determination to board-ready documentation.

Managed Threat Detection

Continuous monitoring with human triage. Email and phone alerting on confirmed incidents.

NIS2 Readiness Review

Fixed-price gap analysis. Know where you stand before committing to a programme.

Get in touch