Cyber Security Governance, Risk and, Compliance

NCA OSMACC is a comprehensive set of cybersecurity requirements designed to strengthen an organization’s presence on social media networks. As businesses increasingly rely on social media platforms such as Facebook, Twitter, LinkedIn, and Instagram to engage with their target audience, the vulnerabilities associated with these channels become apparent.    In 2021, 21% of organizations became targets of one to ten social media attacks. ~ Statista   Organizations face several...

Continuing our exploration of NCA Cybersecurity Controls, we will discuss operational Technology Cybersecurity Controls (NCA OTCC). Operational Technology is crucial in the functioning of essential infrastructures, including sections such as energy, transportation, manufacturing, and more. The interconnectivity of these systems poses unique challenges and vulnerabilities that demand a specialized set of cybersecurity measures.   In 2022, over 40% of the worldwide industrial control systems (ICS) computers experienced...

Continuing our comprehensive exploration of National Cybersecurity Authority (NCA) controls, we will explore NCA Data Cybersecurity Controls (NCA DCC) in this article. In our series of NCA articles, we discussed NCA ECC (Essential Cybersecurity Controls), NCA TCC (Telework Cybersecurity Controls), NCA CCC (Cloud Computing Controls), and NCA CSCC (Critical Systems Cybersecurity Controls).   These controls collectively contribute to fortifying the cybersecurity posture of the Kingdom of Saudi...

Recognizing the crucial need for securing critical systems, the National Cybersecurity Authority (NCA) introduced CSCC in Saudi Arabia in 2019. The NCA CSCC is designed to cater to the cybersecurity requirements of national critical systems.    In modern organizations, complex networks of interconnected systems, spanning from computer to mechanical and electronic systems, form the foundation of operations. Some systems are more crucial than others, known as critical...

The National Cybersecurity Authority (NCA) in Saudi Arabia introduced the Telework Cybersecurity Controls (TCC) in 2021. The NCA TCC is designed to empower organizations in fostering secure telecommuting environments. Similar to NCA CCC, TCC is an extension of the NCA ECC (2018), helping organizations enhance their cybersecurity capabilities and resilience against cyber attacks when providing remote work.   In 2022, 29% of Chief Information Security Officers (CISOs)...

The National Cybersecurity Authority (NCA) introduced the Cloud Cybersecurity Controls in 2020, aiming to strengthen cloud security. The NCA CCC is an extension of the NCA ECC (2018), specifically tailored to address the challenges presented in cloud computing. As digital transformation is rapidly transforming businesses, ensuring cloud security becomes crucial. The proliferation of cloud services has provided businesses with flexibility and scalability, but it has...