We exist to make organisations more resillient.
CTRL Disrupt is a managed security and risk management firm based in the Netherlands. We help organisations stay secure, compliant, and in control — by operating as their dedicated external security and risk team.
Not just another consultancy.
CTRL Disrupt was founded on a simple observation: most organisations don't need more security consultants. They need a security and risk function that actually works.
The traditional model is broken. Organisations hire consultants for one-off projects, receive a report full of recommendations, and then struggle to implement any of them — because no one owns the outcome. Meanwhile, regulations multiply, threats evolve, and the gap between what organisations need and what they have keeps growing.
We decided to build something different. Not a consultancy that advises from the outside, but a firm that embeds itself as part of the organisation. A managed security and risk office — integrated, ongoing, and accountable.
The name says it. CTRL: the structure, discipline, and accountability that security and risk management demands. Disrupt: the willingness to challenge assumptions, break from convention, and build approaches that actually fit the world as it is.
CTRL Disrupt
Your Managed Security & Risk Office.
Based in the Netherlands.
EXPERTISE
ISO 27001
NIS2
BIO2.0
EU AI Act
AI Security & Compliance
Marshalllaan 2
2625 GZ Delft
The Netherlands
© 2026 CTRL Disrupt Consulting B.V. · KvK 87198983 · All rights reserved.
Want to know more about who we are?
We'd rather show you than tell you. Start a conversation and experience firsthand how we think, how we work, and what we can do for you and your organisation.
People who know this work deeply.
Every client works with professional experts. When you work with CTRL Disrupt, you work with the people who actually do the work.
Kevin Blaazer
Associate Digital Resilience
BSc | Associate of (ISC)²
Gijs Brandenburg
Managing Director & Founder
MSc | CISSP CISA CISM CRISC SCF
Ali Haidari
Associate Digital Resilience
BSc
How we think about security and risk.
We combine academic depth — a genuine understanding of risk theory, governance models, and regulatory architecture — with years of practical experience building and running these functions inside real organisations.
Proactive
The organisations that thrive under pressure are the ones that prepared for it. We build capability, identify risks early, and create the conditions for resilience — before incidents force action.
Integrated
Governance, strategy, risk, architecture, and compliance are not separate disciplines in practice. We connect them into one coherent function, managed by one team, with one clear direction.
Proportional
Not every organisation needs the same level of everything. We tailor our approach to match — building what's needed, not what a framework says you should have regardless of context.
Leaving things in better shape than we found them.
Our mission is to make organisations more resilient — so they can manage their threats, seize their opportunities, and deliver their unique value to the world.
We believe that security and risk management, done well, is not a constraint on ambition. It's an enabler. Organisations that understand their risks, protect their assets, and meet their obligations are freer to innovate, grow, and serve their stakeholders.
![](data:image/svg+xml,<svg display="block" role="presentation" viewBox="0 0 250 250" xmlns="http://www.w3.org/2000/svg"><path d="M 140.484 46.853 L 140.484 5 C 140.484 2.239 138.245 0 135.484 0 L 111.83 0 C 109.069 0 106.83 2.239 106.83 5 L 106.83 75.632 C 106.83 81.2 100.098 83.989 96.16 80.052 L 64.418 48.307 C 62.465 46.354 59.3 46.354 57.347 48.307 L 40.621 65.033 C 38.668 66.986 38.668 70.151 40.621 72.104 L 72.645 104.128 C 78.576 110.06 88.194 110.06 94.125 104.128 L 132.765 65.489 C 137.707 60.546 140.484 53.843 140.484 46.853 Z M 107.087 203.147 L 107.087 245 C 107.087 247.761 109.326 250 112.087 250 L 135.74 250 C 138.501 250 140.74 247.761 140.74 245 L 140.74 174.368 C 140.74 168.8 147.472 166.011 151.41 169.948 L 183.153 201.692 C 185.106 203.645 188.271 203.645 190.224 201.692 L 206.949 184.967 C 208.902 183.014 208.902 179.849 206.949 177.896 L 174.925 145.872 C 168.994 139.94 159.376 139.94 153.445 145.872 L 114.805 184.511 C 109.863 189.454 107.086 196.157 107.086 203.147 Z M 46.853 108.302 L 5 108.302 C 2.239 108.302 0 110.541 0 113.302 L 0 136.955 C 0 139.716 2.239 141.955 5 141.955 L 75.632 141.955 C 81.2 141.955 83.989 148.687 80.052 152.625 L 48.308 184.368 C 46.355 186.321 46.355 189.486 48.308 191.439 L 65.033 208.164 C 66.986 210.117 70.151 210.117 72.104 208.164 L 104.128 176.14 C 110.06 170.209 110.06 160.592 104.128 154.66 L 65.49 116.02 C 60.547 111.078 53.844 108.301 46.854 108.301 Z M 203.147 141.698 L 245 141.698 C 247.761 141.698 250 139.459 250 136.698 L 250 113.045 C 250 110.284 247.761 108.045 245 108.045 L 174.368 108.045 C 168.8 108.045 166.011 101.313 169.948 97.375 L 201.692 65.632 C 203.645 63.679 203.645 60.514 201.692 58.561 L 184.967 41.836 C 183.014 39.883 179.849 39.883 177.896 41.836 L 145.872 73.86 C 139.94 79.791 139.94 89.409 145.872 95.34 L 184.511 133.98 C 189.454 138.922 196.157 141.699 203.147 141.699 Z" fill="rgb(0, 0, 0)" height="250.00000415039062px" id="adRILj7H_" width="250.00000415039062px"/></svg>)
What drives us.
Awareness
We pay attention — to our clients, to the landscape, and to each other. We don't apply templates. We learn your reality before we start building. And we stay attentive as that reality changes.
Courage
We don't follow hype cycles or hide behind buzzwords. When something needs to be said — to a client, to a board, or to each other — we say it. Clearly, respectfully, without hesitation.
Joy
We take the work seriously. We don't take ourselves too seriously. Life is too short to spend your career in a joyless environment, and security is too important to be left to people who've stopped caring.