Essential Cybersecurity Controls24570
18 December, 2019
The National Cybersecurity Authority has developed and released the “Essential Cybersecurity Controls”, that when implemented enable organizations to meet the minimum cyber security requirements in the Kingdom of Saudi Arabia.
These controls are based on best practices and standards. When properly implemented these Essential Cybersecurity Controls will significantly reduce cyber risks that may be potentially harmful to information and technical assets.
They are 114 core controls for cybersecurity, divided into five main components:
Cybersecurity Related to Third Parties and Cloud Computing.
Cybersecurity for Industrial Control Systems.
The ECCs are mandatory, where all organizations within the scope of these controls must implement what maintains the permanent and continuous commitment to these controls.
Please use the digital verification codes below to ensure the integrity of the ECC file:
Assessment and Compliance Tool
Please use the digital verification codes below to ensure the integrity of the Assessment and Compliance Tool file: