IG&H launches cybersecurity division to close the gap between compliance and real security

Utrecht, October 21, 2025 – IG&H is expanding its services with a specialized cybersecurity division focused on sectors under the greatest pressure to strengthen digital resilience: healthcare, financial services and retail. With this move, the consulting company responds to growing demand for integrated cyber expertise, as organizations struggle to meet the requirements of DORA, NIS2 and DNB Good Practice.

“Cybersecurity can no longer be an afterthought. It must be part of the foundation. By building this division in-house, our clients benefit from secure and resilient strategies from day one,” says Davide Bonalumi, Senior Manager Cybersecurity at IG&H. Bonalumi joined IG&H this year after transitioning from ABN Amro.

The new division helps organizations not only comply with regulations but also remain resilient in an increasingly complex threat landscape. IG&H integrates cybersecurity directly into digital transformation projects, ensuring innovation and security go hand in hand. The approach combines deep sector knowledge with technical expertise, from designing future-proof operating models to advising on regulations like DORA, NIS2 and PCI DSS. For compliance, IG&H supports clients with SOC2 and the NIST Cybersecurity Framework (CSF).

“Regulatory compliance is essential, but not enough,” adds Ron Evers, Head of Technology Consulting at IG&H. “Cybercriminals move faster than regulators, and being compliant doesn’t automatically mean you’re secure. There are still many misconceptions about cybersecurity. In retail, for example, the myth persists that smaller organizations aren’t attractive targets. But mid-sized companies with customer data and payment information are especially vulnerable and often serve as entry points into larger supply chains.”

Digital resilience as a strategic pillar

Cybersecurity affects every sector. From protecting sensitive data and ensuring operational continuity to meeting regulatory requirements and maintaining customer trust, strong security safeguards reputation and future. IG&H sees cybersecurity as a strategic pillar of digital transformation.

Unlike traditional models that rely on external partners, IG&H integrates security directly into its consulting and technology delivery. This integrated approach reduces risks, accelerates implementations and ensures consistent outcomes.

The cybersecurity division is led by Ron Evers. His team brings proven experience in cybersecurity and consulting, offering a unique blend of governance, compliance and technical expertise to the market.

The urgency for digital resilience is growing rapidly

• 37,839 data breaches were reported in the Netherlands in 2024, a record number and 50% more than in 2023.

• 45% of organizations worldwide will face supply chain attacks by the end of 2025.

• 76% of healthcare organizations are at increased risk of ransomware due to poor management and patching.

• 85% of CEOs see cybersecurity as crucial for growth, not just for protection but also as an enabler of strategic goals.

• 488 incidents in the EU financial sector between 2023 and 2024 highlight the need for continuous improvement.

  
  

“Security is shared, but responsibility must be owned,” concludes Evers. “We help organizations gain control over their digital risk profile. With this step, we strengthen our role as a trusted partner for clients undergoing digital transformation.”