KSA-ECC Compliance and Reporting
Essential Cybersecurity Controls (ECC)
The National Cybersecurity Authority (NCA) within the Kingdom of Saudi Arabia (KSA) produces, and will periodically update, the Essential Cybersecurity Controls (ECC). The objective of the NCA is to ensure organizations maintain and support the cybersecurity of the Kingdom to protect its interests, national security, critical infrastructure, high priority sectors, and government services.
The NCA worked to study the Saudi market and developed a compliance package that is tailored to its needs. All government run agencies and departments within the Kingdom must comply with the ECC, and any privately run organizations looking to do business with public sector organizations must also comply.
LogRhythm has released new sets of compliance use cases and predefined reports to enable organisations to better comply with the KSA-ECC.
The KSA-ECC Module was built using LogRhythm’s Consolidated Compliance Framework (CCF) content, which cross-maps numerous globally accepted frameworks to demonstrate compliance across multiple jurisdictions. As LogRhythm’s technology stack grows and expands, we continuously enhance our CCF methodology to provide the highest-quality product to our customers.