framework

Operational Technology Cybersecurity Controls (OTCC-1: 2022)

Issuing bodyNCA
CountrySaudi Arabia
RegionNational
Date issued2022
Operational TechnologyCybersecurityIndustrial Control SystemsRisk Management

The Operational Technology Cybersecurity Controls (OTCC-1: 2022) framework, issued by the National Cybersecurity Authority (NCA) in Saudi Arabia, establishes cybersecurity controls for Industrial Control Systems (ICS). It aims to address the increasing cyber threats targeting these systems and provides a structured approach to implementing and monitoring cybersecurity measures within the Kingdom.

Key requirements
  • Implement cybersecurity controls tailored for Industrial Control Systems (ICS).
  • Comply with the OTCC framework as governed by the laws of the Kingdom of Saudi Arabia.
  • Adhere to the Arabic version of the document as the binding language for interpretation.
  • Share information according to the Traffic Light Protocol (TLP) designations (Red, Amber, Green, White).
Applies to: Organizations operating Industrial Control Systems (ICS) within the Kingdom of Saudi Arabia.
View original document ↗Ask GCC LexAI about this →
More from NCA
Cloud Cybersecurity Controls (CCC-2: 2024)Cloud Cybersecurity Controls Implementation Guide for CSPsCloud Cybersecurity Controls Implementation Guide for CSTsCritical Systems Cybersecurity Controls (CSCC-1: 2019)Critical Systems Cybersecurity Controls Implementation GuidelinesData Cybersecurity Controls (DCC-1: 2022)
AI-generated summaries only. Arabic originals are legally binding. This is not legal advice. · ← All documents