Van Dijk Teams Up with Blaud and Microsoft to Set a New Benchmark for Security and Compliance 

As one of the largest suppliers of textbooks and digital learning tools in the Netherlands, Van Dijk processes hundreds of thousands of orders each year. That kind of scale demands more than operational efficiency, it calls for a seamless digital ecosystem where inventory management, order processing, licensing, and logistics work in perfect harmony. 

But speed and scale come with their own set of risks. Sensitive data, complex access controls, and an increasing wave of cyber threats mean that a single weak link could impact the very schools, teachers and students who rely on Van Dijk to ensure everything’s in place when the new school year begins. 

Staying resilient in a fast-moving digital world takes more than just basic security. For Van Dijk, it meant laying the groundwork for a digital foundation built to handle not only today’s demands, but those of tomorrow as well. That foundation took shape through a structured, ISO-aligned framework focused on three critical domains: device management, threat detection, and data protection.  

But ISO compliance is more than a checklist, it’s a mindset rooted in continuous improvement. With Blaud’s guidance, Van Dijk translated this commitment into action, embedding security and compliance into the heart of its operations. 

When Van Dijk first partnered with Blaud, its security approach was highly fragmented. “Our devices mainly acted as access points to the virtual workspace,” says Raymond van Koulil, Manager Business Solutions at Van Dijk. “We had antivirus protection and conditional access rules in place, but there was no overarching security framework tying it all together.” 

Although the setup was functional, it didn’t meet the requirements for ISO certification. “To meet ISO standards, our devices had to do more than connect people to their work. They needed to become fully managed, fully secured workstations. That required a complete rethink of how we approached IT security.” 

Van Dijk already had the building blocks in place: a comprehensive Microsoft licence that included all the essential security tools. However, the more advanced capabilities within the Microsoft ecosystem had yet to be fully leveraged. “We had the right technology at our fingertips, but building a framework where management, security and compliance are fully in sync requires more than just access to the right tools. Embedding them effectively into our organisation demanded specialised expertise.” 

To guide this transformation, Van Dijk brought in Blaud as a strategic partner. “We needed a partner that could help us develop a clear strategy for implementing Microsoft’s management and security solutions securely and efficiently across our entire environment. Blaud’s philosophy and way of working aligned perfectly with our vision,” Raymond concludes. 

A strong security approach doesn’t start with technology, it starts with a clear strategy. For Van Dijk, that meant going back to the drawing board. “In a series of workshops, we did more than checking off ISO requirements,” says Raymond van Koulil, Manager Business Solutions at Van Dijk. “We took a deep dive into our information security policy and mapped out the risks that truly mattered to our organisation.” 

From those sessions emerged a detailed blueprint outlining specific configurations for mobile phones, tablets, and laptops that was thoroughly tested in a proof of concept, refined, and optimised for real-world use. But a solid management strategy is only as effective as the security framework that supports it. “With Intune, we centralised the management and protection of all endpoints — from Windows laptops to iPads and Android devices,” explains Jim Asbeek Brusse, Account Manager at Blaud. “Defender for Endpoint added real-time threat detection and response across the entire device fleet.” 

And the results extended far beyond the IT department. What began as a technical transformation quickly evolved into a shift in mindset across the entire organisation. “We expected the transition to take time,” Raymond recalls, “but by investing early in communication and involving colleagues throughout the process, we built trust and momentum. In fact, enthusiasm grew so quickly that people started asking when they could switch over.” 

Alongside device management and endpoint protection, data security played a pivotal role in Van Dijk’s ISO journey. With large volumes of sensitive information in circulation, it became essential to prevent accidental exposure or unauthorised sharing. The search for a smart solution quickly led to Microsoft Purview. 

“For our ISO certification, classifying data wasn’t optional, but it also couldn’t become a burden,” says Raymond van Koulil. “We didn’t want endless dropdown menus or guesswork. Together with Blaud, we designed a system with just four intuitive labels: public, internal, confidential, and sensitive.”  

That clarity made all the difference. Classification became second nature and the foundation for a smarter, more automated approach to protection. “This structured approach has made the handling of sensitive business data not only more secure, but also more intelligent. DLP automatically blocks the sharing of confidential files when it shouldn’t happen and gives us real-time visibility into potential risks,” Raymond explains. “But security shouldn’t come at the cost of productivity. We’ve configured DLP so it offers robust protection without disrupting the day-to-day.” 

More than just a technical safeguard or a compliance checkbox, data classification also became a catalyst for awareness within the organisation. “Once people start thinking about how sensitive their data really is, everything changes,” Raymond reflects. “We aren’t just ticking compliance boxes anymore. We are raising awareness, reducing risk, and creating a workplace where secure behaviour becomes second nature.”