mobile-logo
 

Cyber Security Blog

CCC Controls vector illustration
05 Feb

What is NCA CCC (Cloud Cybersecurity Controls)?

by Paulo Alves
in Cyber Security Governance, Risk and, Compliance, NCA ECC
Comments

The National Cybersecurity Authority (NCA) introduced the Cloud Cybersecurity Controls in 2020, aiming to strengthen cloud security. The NCA CCC is an extension of the NCA ECC (2018), specifically tailored to address the challenges presented in cloud computing. As digital transformation is rapidly transforming businesses, ensuring cloud security becomes crucial. The proliferation of cloud services has provided businesses with flexibility and scalability, but it has...

Read More
Automate Compiance Process vector illustration
01 Feb

How to automate ISO 27001, SOC 2, PCI DSS certification?

by Liam Davis
in Cyber Security Governance, Risk and, Compliance, ISO 27001, PCI DSS, SOC 2
Comments

Information security and compliance are critical concerns for businesses of all sizes. In this regard, ISO 27001, ISO 20000, SOC 2, and PCI DSS certifications have become necessary to secure data, each addressing specific facets of information security. ISO 27001 helps establish an Information Security Management System (ISMS), SOC 2 assesses service organizations' controls, and PCI DSS aims to secure payment card data.    Achieving these certifications...

Read More
Dubai vector illustration
26 Jan

Dubai Electronic Security Centre Announced the Release of ISR V3

by Marcelly Terem
in Cyber Security Governance, Risk and, Compliance, ISR V2
Comments

Cyberattacks have been on the rise in the UAE. According to research, cybercriminals targeted UAE residents and visitors through phishing campaigns in Dec 2023. Moreover, the UAE blocked over 71 million attempted cyberattacks in 2023. Securing sensitive information has become crucial today. In this regard, the Dubai Electronic Security Centre (DESC) is set to release the Information Security Regulation Version 3.0 (ISR V3) to enforce...

Read More
SAMA vector illustration
26 Jan

Guide to Saudi Arabian Monetary Authority (SAMA) Cyber Security Framework

by Elisa Desideri
in Cyber Security Governance, Risk and, Compliance, SAMA Cyber Security Framework
Comments

The number of successful cyberattacks on financial institutions is on the rise. In Q3 of 2023, unique cyber incidents doubled compared to the same period in the previous year. This highlights increased criminal attention to the financial industry. In this regard, the Saudi Arabian Monetary Authority (SAMA) has established a Cyber Security Framework (CSF) to help organizations navigate the complexities of the financial sector.    Consequences of...

Read More
ECC Compliance vector illustration
23 Jan

Navigating the complexities of NCA ECC compliance: A guide for businesses

by Paulo Alves
in Cyber Security Governance, Risk and, Compliance, NCA ECC
Comments

NCA ECC compliance is mandatory for organizations in Saudi Arabia, especially those handling Critical National Infrastructures (CNIs). In recent years, the Kingdom’s government entities have set strategic objectives, focusing on digital transformation across key sectors to align with its Saudi Vision 2030.    Source   The National Cybersecurity Authority (NCA) has established cyber security regulations, including NCA ECC, that apply to all government entities and critical national infrastructure (CNI)....

Read More