In response to emerging critical infrastructure targeted threats and vulnerabilities. The Saudi Arabia National Cybersecurity Authority (NCA) has developed mandates and guidance for cybersecurity in these systems to shore up the nation’s cyber defense
These controls are developed as an extension to the ECC to achieve higher levels of national cybersecurity goals by focusing on Industrial Control Systems (ICS) and defining its cybersecurity requirements referred as “NCA OTCC-1:2022”
NCA OTCC-1:2022 addresses mainly People, Process, Technology & Strategy focused on below four key domains.