guidance

Cloud Cybersecurity Controls Implementation Guide for CSPs

Issuing bodyNCA
CountrySaudi Arabia
RegionNational
Cloud SecurityCybersecurity GovernanceRisk ManagementAccess Management

This document, the "Cloud Cybersecurity Controls Implementation Guide for CSPs (GCCC-CSP)", provides guidance to Cloud Service Providers (CSPs) on implementing cybersecurity controls. It outlines a structure of cybersecurity domains and subdomains, offering implementation guidance to enhance the security posture of CSPs operating within Saudi Arabia.

Key requirements
  • Implement cybersecurity risk management processes.
  • Comply with cybersecurity standards, laws, and regulations.
  • Manage identity and access.
  • Protect information systems and processing facilities.
Applies to: Cloud Service Providers (CSPs) operating in Saudi Arabia
View original document ↗Ask GCC LexAI about this →
More from NCA
Cloud Cybersecurity Controls (CCC-2: 2024)Cloud Cybersecurity Controls Implementation Guide for CSTsCritical Systems Cybersecurity Controls (CSCC-1: 2019)Critical Systems Cybersecurity Controls Implementation GuidelinesData Cybersecurity Controls (DCC-1: 2022)Essential Cybersecurity Controls (ECC-2: 2024)
AI-generated summaries only. Arabic originals are legally binding. This is not legal advice. · ← All documents