Human-Centric Cyber Security

Since 2010, Apalala helps Belgian Top 100 companies and SMBs to implement a Cyber Security Culture through education and communication.


Your organisation is likely subject to a lot of security threats: fraud attempts, theft, disgruntled employees, continuous vulnerability scans of your servers and network, (spear) phishing, Denials of service… you name it.

Although human centred attacks are so efficient, most security controls to prevent them (awareness sessions, serious games, posters, human vulnerability tests) are still based on tradition and provide moderate to counter-effective effects. Often, metrics on human related risks do not take our knowledge of the human cognition into account, leading to erratic and apparently unexplainable results.

Why us?

Apalala develop and continuously improve the NeuroSecure© framework to effectively measure the progress and guide the remediation of the required cognitive skills and behaviours necessary to optimize your human-centred controls.

We help you implement the framework and improve your existing controls. At the same time, as we are committed to improve and share the knowledge necessary to improve your security, we offer you to participate to the current scientific researches we conduct in partnership with the academic world to have a better view on your organisation specificities and faster application of the latest scientific discoveries.

Apalala is committed to excellence and is constantly researching and developing new methodologies to better protect your business. We partner with universities to conduct scientific researches in neuro-sciences on security related matters. This gives us a greater scientific knowledge to better prevent human related risks. We have an holistic approach that covers physical security (authorized by the Federal Public Service of homeland), Information security, cyber-security and organizational security.

We are pragmatic by nature. For us, what's important is what works. Our goal is to enable you to achieve your objectives while taking the right amount of risks. Hence, we aim at the maximum efficiency, at the optimal compromise between effort and effects, as security should not be the activity taking most of your benefits away from you. Being geeks, we do not stop at the human aspects, we encompass the technological and organizational aspect of your activities into our work.


[1] In its 2018 Data Breach Investigations Report, Verizon analysed  30.362 security incidents. Amongst these, Phishing attacks (1.192) account for the 3rd larger source of incidents (3,92%) and the 3rd cause of data breaches (13,11%)[1]. “Phishing and pretexting represent 98% of social incidents and 93% of breaches. Email continues to be the most common vector (96%)”. Globally, social engineering accounted for 1,450 incidents amongst which 381 lead to data disclosure. With a success rate of 26,27%, social engineering attacks are likely the most efficient and cost-effective one.1.799 (5,92%) incidents lead to data breaches. 70,51% of the incidents were Denial-of-Service attacks and 3.740 where due to errors (12,31%).