About BWise

Blog

Enabling GRC Technology to Thwart Cyber Security in the UAE

November 1, 2016 by
Filed under: Information Security

In 2014, the National Electronic Security Authority (NESA) in the United Arab Emirates (UAE) announced strategies, policies, and standards to direct and align national cyber-security efforts. NESA is a UAE federal authority that operates under the Supreme Council for National Security and is responsible for setting guidelines and mandatory compliance expectations for government and critical national service entities. 


NESA Compliance Requirements

The consequences of cybercrime can be significant. Breaches can cause serious reputation damage, employees can lose jobs, and financial losses can occur. Nearly 80% of the UAE companies expect cybersecurity to increase over the next two years(1).

This threat of critical data loss is one of the main reasons why NESA compliance requirements were introduced. NESA recommends all organizations begin compliance with thorough risk assessments and business impact analyses. This will help an organization identify its critical assets and enables management to address security control-related issues. It is important to note that the level of information infrastructure risk an organization is facing will determine how closely NESA regulators will search for assurance that risks are adequately and appropriately addressed.

A software solution to support the management of cyber security processes

Nasdaq BWise recognizes the significance of managing cyber risk, protecting an organization’s assets, and reporting on it. As a result, the Governance, Risk, and Compliance software solution is able to incorporate the NESA framework into its solution to develop the means to sustain its risk management practices. For example, the BWise information security solution offers the framework to support the management of cyber security processes (e.g., business impact analysis, identification, assessment, treatment, management, monitoring, reporting), but can streamline specific activities such as the seamless integration of threat and vulnerabilities data from customer systems into BWise for assessment and analysis. Other BWise solutions, like business continuity, offer integrating ways to view complementary cyber risk management activities in a holistic manner.


NESA Framework

The NESA framework provides a set of recommendations recognizing that organizations have varying needs and risk management practices. Nasdaq BWise offers a scalable approach to the facets of its solutions. This enables UAE organizations to manage their cyber exposures based on the maturation of their risk management activities as well as their unique risks, threats, vulnerabilities, governance model, and tolerances.

Moreover, NESA’s validation for organizational and business compliance lends itself well to the GRC software solutions. This includes:

  1. Reporting, to substantiate the risk and control environment (including self-assessments)
  2. Auditing, to affirm the accuracy of details supporting any reporting conclusions
  3. Testing, to demonstrate the efficacy of the management and control environment
We have a “win-win” situation with GRC technology in place to protect, comply, and simplify a company’s security framework while meeting the compelling compliance standards and validation process initiated by UAE authorities.

Read more about Information Security or experience in virtual reality how to protect your company against cyber threats.

(1) Arabianbusiness.com - UAE ranks low in global cyber security breaches report (2016)

Tags: Information Security, Cyber Security, Cyber Risk

More Information

Nasdaq Offices

What is GRC?

Read the definition of Governance, Risk and Compliance


Gartner ORM report

Nasdaq's BWise has been positioned as a Leader in Gartner's Magic Quadrant for Operational Risk Management Report, 2016. 


Forrester report

Forrester positioned Nasdaq BWise as a Leader in New Report, The Forrester Wave™: Governance, Risk, And Compliance Platforms, Q1 2016.


Why BWise

Download the brochure: Three Key Reasons why Hundreds of Customers Rely on Nasdaq BWise.

Scroll up