Complying with the ECC and DCC of the National Cybersecurity Authority (NCA)
The ECC and DCC of the National Cybersecurity Authority
The National Cybersecurity Authority (NCA) has developed a set of essential cybersecurity controls (ECC-1: 2018) for all organizations to implement. These practices were derived from the NCA’s review and consideration of multiple national frameworks, standards, and international experiences. The NCA also surveyed opinions from various organizations about how best practices should work in this area to be better protected against future attacks.
In continuation of its role in regulating and protecting the Kingdom’s cyberspace, NCA has issued the Data Cybersecurity Controls (DCC-1:2022). These controls are designed based on comprehensive research of multiple national and international cybersecurity standards, frameworks, and controls.