NCA CCC (Cloud Cybersecurity Controls)

ICON - NCA.png

Region

SA (Saudi Arabia)

Focus

Cloud

Description

The Cloud Cybersecurity Controls (CCC – 1: 2020) is developed by the NCA as an extension to the Essential Cybersecurity Controls (ECC) to advance national cybersecurity goals by addressing cloud computing services from the perspectives of Cloud Service Providers (CSPs) and Cloud Service Tenants (CSTs). The CCC establishes the minimum cybersecurity requirements for CSPs and CSTs, enabling them to deliver and utilise secure cloud computing services while effectively mitigating cyber risks. It emphasises protecting the confidentiality, integrity, and availability of data and information within the cloud environment. To achieve these objectives, the CCC focuses on four key cybersecurity pillars: strategy, people, procedures, and technology.

Key Details

Developed by the Saudi National Cybersecurity Authority (NCA).
Aims to protect cloud infrastructure, data storage, and cloud-based applications.
Covers aspects such as data encryption, identity and access management (IAM), and cloud service provider compliance.
Emphasises risk assessment and monitoring of cloud-based activities.

More Information

NCA CCC Official Resource

Region​

Focus​

Description​

Key Details​

More Information​

Region

Focus

Description

Key Details

More Information