You are here

Kingdom of Saudi Arabia

Survey Answer:

National Cyber Security Center: The Basic Cyber Security Controls were designed to be applicable to any Entity, and all Entities operating in Saudi Arabia are encouraged to adopt and implement these Controls.
CERT-SA: Computer Emergency Response Team (CERT-SA) is non-profitable center established to play an important role in increasing and cultivating awareness, knowledge, management, detection, prevention, coordination and response to information security incidents at the national level.
Cabinet Resolution No. 82 dated 22 Rabi’ Al-Awwal 1431H (7 March 2010) regulating the approval upon recommendations included within the Experts’ Commission's Minutes No. 495 dated 21 Shawwal 1430H (29 September 2009) regarding IT and National Secu-rity Conference held in Riyadh in November 2007 raised the level of interest in infor-mation security in the government sector. The Ministry of Communications and Information Technology (“MCIT”) issued a draft strategy document entitled Developing National Information Security Strategy for the Kingdom of Saudi Arabia; and the Saudi communication authority/regulator, the Communications and Information Technology Commission (“CITC”), issued an advisory document entitled Information Security Policies and Procedures Development Framework for Government Departments. We are not aware of any legislation or firm regulatory requirements to have come out of these documents.

Provided By:
Nick O’Connell: Al Tamimi & Company