framework

Data Cybersecurity Controls (DCC-1: 2022)

Issuing bodyNCA
CountrySaudi Arabia
RegionNational
Date issued2022
cybersecurity governancedata protectioncloud securitythird-party risk

The Data Cybersecurity Controls (DCC-1: 2022) framework, issued by the NCA in Saudi Arabia, establishes cybersecurity controls for data protection. It outlines requirements for cybersecurity governance, defense, and third-party/cloud computing cybersecurity. The framework aims to safeguard data assets in accordance with Saudi Arabian laws and regulations.

Key requirements
  • Implement cybersecurity governance controls.
  • Establish cybersecurity defense mechanisms.
  • Apply cybersecurity measures for third-party and cloud computing.
  • Comply with the Data Cybersecurity Controls (DCC-1: 2022)
Applies to: Organizations handling data within the Kingdom of Saudi Arabia
View original document ↗Ask GCC LexAI about this →
More from NCA
Cloud Cybersecurity Controls (CCC-2: 2024)Cloud Cybersecurity Controls Implementation Guide for CSPsCloud Cybersecurity Controls Implementation Guide for CSTsCritical Systems Cybersecurity Controls (CSCC-1: 2019)Critical Systems Cybersecurity Controls Implementation GuidelinesEssential Cybersecurity Controls (ECC-2: 2024)
AI-generated summaries only. Arabic originals are legally binding. This is not legal advice. · ← All documents