Governance
GRC
Governance, risk management, and compliance (GRC) is a relatively new corporate management system that integrates these three crucial functions into the processes of every department within an organization.
SAMA
we cover all levels of Cyber Security Saudi Arabian Monetary Authority (SAMA)
NCA
The existence of a secure and trusted national cyberspace is a key enabler for growth and prosperity. Additionally, the expansion in the use of technology opens new horizons for cyber threats, which requires enhancing cybersecurity to protect networks, information technology systems and Industrial Control Systems and operational technologies and their hardware and software components. Furthermore, data and services must be protected from cyber threats and risks such as disruption, amendment, illegal use or exploitation, as well as providing a secure and trusted infrastructure that enables government services and support of the digital transformation.
NCA will lead and coordinate national efforts through the interaction, participation and integration of national entities and international partners and stakeholders to achieve its ambition and goals.
ISO-27001
ISO 27001, is an information security standard created by the International Organization for Standardization (ISO), which provides a framework and guidelines for establishing, implementing and managing an information security management system (ISMS).
According to its documentation, ISO 27001 was developed to "provide a model for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an information security management system."
The specification includes details for documentation, management responsibility, internal audits, continual improvement, and corrective and preventive action. The standard requires cooperation among all sections of an organization.
The goal of ISO 27001 is to help organizations protect their critical information assets and comply with applicable legal and regulatory requirements.