Krishna Agrawal’s Post

The local regulatory authority in Saudi Arabia National Cybersecurity Authority has developed the Operational Technology Cybersecurity Controls (OTCC) methodology to enhance the security of OT/ICS environments. This innovative framework offers a comprehensive approach tailored specifically for the unique challenges of OT/ICS systems. Key Features of OTCC: Targeted Security: Tailored controls address the specific needs of OT/ICS environments, going beyond general IT cybersecurity measures. Comprehensive Coverage: The OTCC framework includes various cybersecurity domains, from asset management to incident response. International Alignment: The methodology aligns with leading international standards such as ISA/IEC 62443 and NIST, providing a robust security foundation. Risk-Based Approach: Controls are applied based on the criticality and impact of OT/ICS systems, ensuring targeted and efficient security measures. The OTCC methodology aims to provide a scalable and flexible approach to cybersecurity, allowing organizations to assign appropriate controls based on the criticality of their facilities. The OTCC ensures a holistic and robust cybersecurity posture by integrating international best practices. #Cybersecurity #OTSecurity #OTCC #ICS #InfrastructureProtection #BestPractices

🔒 Simplified Cybersecurity: Optimize, Automate and Reduce Costs with ASIP 🔒 We know that managing a SOC can be a huge challenge for companies. High costs in technologies and personnel, the complexity of current tools, and constant regulatory compliance can slow down the efficiency of your team. With ASIP, our AI-powered SOC platform, we reduce your costs by more than 50%, eliminating the need for additional personnel and complex technologies. How? Through the automation and orchestration of key processes, giving you real-time visibility over your entire infrastructure, and ensuring compliance with regulations such as MITRE ATTACK, NIST, and ISO2700. Imagine being able to detect and respond to security incidents in record time, with a platform that frees you from dependence on specialized personnel. 👉 Would you like to know more about how ASIP can transform the security of your company? Contact us today. #Ciberseguridad #Telecomunicaciones #SOC #Automatización #TecnologíaIA #CumplimientoNormativo #ksa #NCA #SAMA #cybersecurity #AIUKEN #SaudiArabia #Regulations Saudi Central Bank – SAMA National Cybersecurity Authority Ministry of Communications and Information Technology of Saudi Arabia Aiuken Cybersecurity Cyber Security News ® #protect

ISM June Release – an emphasis on OT security In the recent update to the Information Security Manual (ISM) published by ASD/ACSC in June 2024, we observed an increased emphasis on Operational Technology (OT). - The ISM emphasises the growing importance of security of the OT environment by recommending that, apart from Information Technology (IT), CISOs also take a leadership role in the OT security domain. Since we are in an era of convergence of IT and OT systems, this amendment of the ISM aligns with the critical need for an integrated cybersecurity strategy and IT+OT security governance. - The latest ISM update further recommends that CISOs, in addition to reporting to the board of directors, also report on to the organisation's audit, risk, and compliance committee for the security matters covering both IT and OT domains. This amendment instigates the management of risks emerging from the OT cyber threat landscape, and the organisations make informed decisions to strengthen their overall security posture. - Recognising the increasing risk from the supply chain in the OT domain, the recent ISM recommends the inclusion of the OT domain in the supply chain security initiatives of the organisation. Many ISM controls covering the sourcing, delivery and assessment of ICT equipment/services have been amended to include OT equipment/services. I think this is a great step forward for organisations to improve their overall cybersecurity posture and manage the risks from growing threats in today's IT-OT digital convergence landscape. Share your thoughts about the latest ISM updates related to the cyber security of the OT environment. #ACSC #CyberSecurity #ISM #ASD #ASD-ISM

National Cybersecurity Authority (Comparison) ECC-1:2018 vs. ECC-1:2024 Beside the updated controls, here is my take: The comparison between the 2018 and 2024 versions of the NCA Essential Cybersecurity Controls (ECC) indicates significant updates that likely enhance the cybersecurity posture of both Saudi Arabia and the global digital landscape. Here’s an overview of how these changes contribute to better protection against threats: Broader Scope and Updated Requirements: The 2024 version appears to introduce more comprehensive and updated controls compared to 2018, aligning with modern cybersecurity challenges and advancements. This expansion likely strengthens defenses against more sophisticated and persistent threats, ensuring that evolving technologies and attack vectors are addressed. Enhanced Cybersecurity Resilience: Emphasis on resilience in the 2024 document underlines the importance of preparing for, withstanding, and recovering from cyber incidents. This bolstered focus can mitigate disruptions not only at a national level but can also set a benchmark for global practices, contributing to more robust systems worldwide. Third-Party and Cloud Security: The updated 2024 document places more structured controls on third-party and cloud computing cybersecurity, recognizing the significant role of cloud services and external partnerships. This adaptation enhances protection for hosted data, which is crucial for interconnected global business operations and data exchanges. Alignment with International Standards: By refining its frameworks to align more closely with global cybersecurity standards and best practices, Saudi Arabia's 2024 ECC potentially encourages similar measures internationally, fostering a collective, unified approach against threats that transcend borders. Conclusion: The evolution from ECC 2018 to ECC 2024 marks a significant enhancement in Saudi Arabia’s cybersecurity landscape. By expanding the scope, strengthening resilience, and integrating advanced threat management practices, the new controls set a higher standard for defense. This advancement not only strengthens national security but also establishes a model that can influence and benefit global cybersecurity practices. The revisions highlight the Kingdom's commitment to protecting critical infrastructures, adapting to technological progress, and ensuring collaboration across sectors, ultimately contributing to a more secure digital environment both regionally and internationally. #cyber #cybersecurity #InfoSec #CISO #CISOS #cyberattack #Muath_CISO_Bag #informationsecurity #ISO27001 #Cybersecurity #NCA #SaudiArabia #ECC2024 #DigitalSecurity #CyberResilience #GlobalSecurity #AdvancedThreatProtection #CyberGovernance #InformationSecurity #TechLeadership #CyberDefense #CloudSecurity #CyberRisk #ITSecurity

Adapting NIST Cybersecurity Framework 2.0 for Optimizing Physical Protection. " Physical Security Framework" The recent release of the National Institute of Standards and Technology : NIST Cybersecurity Framework (CSF) 2.0 has gained significant attention across various sectors, with many organizations eager to adopt its principles. One notable addition to the framework is the "Govern" function, which focuses on establishing plans and overseeing the other functions. This insightful approach, I propose adapting the CSF 2.0 guidelines to develop a tailored framework for physical security. " Physical Security Framework " It consolidates the following key components: 1. Govern: Establish policies, procedures, and accountability measures to guide and oversee the entire physical security functions. 2. Identify: Conduct thorough assessments to identify what assets to be protected, what are vulnerabilities, and potential threats. 3. Protect: Implement protective measures to safeguard assets and mitigate loss and damage. 4. Detect: Monitor and identify potential threat in a timely manner. 5. Delay: Implement countermeasures to delay the progress of adversaries, providing additional response time. 6. Response: Execute effective incident response to address and contain security incidents. 7. Collaborate: Initiate collaboration with internal and external stakeholders to optimize security effort. There 3 significant modification in this framework. First is the addition of the "Delay" function, which is critical in the physical security context. Unlike the digital realm, the physical world involves movement and motion,so it is decisive to implement countermeasures that can slow down adversaries and buy time for an effective response. Second is the omission of the"Recover" function. While recovery is undoubtedly important, but not all security departments may be directly responsible for this aspect. Some organizations may assign recovery tasks specially depending on their specific needs and structure. Third is "Collaborate" ,the framework also emphasizes the importance of collaboration, with several collaborative aspects, including but not limited to: 🚩Information sharing : Augmenting situational awareness and best practices. 🚩Joint Training : Improving preparedness and capabilities. 🚩Standardization : Enhancing efficiency and interoperability. 🚩Intelligence : Informing precise risk assessments. 🚩Technology and Resource sharing : Optimizing cost-effectiveness. By leveraging the expertise and insights embedded in the NIST CSF 2.0 and tailoring it to the unique challenges of the physical realm, the Physical Security Framework could offer a comprehensive and optimized tool and encourage security professional to drive continuous improvement and safeguarding people critical assets, and operations. #physical #cybersecurity #nistcsf #security #asec Pol.Capt.Kittiphoom Kerdman Strategic Security Management Innovator

Hello Community! Are you looking for a standard to comply to for your OT/ICS Environment? Or do you wonder about the synergy between IEC/ISO 27001/2 and ISA/IEC 62443? Here is a whitepaper by International Society of Automation (ISA) that gives an overview on applying ISO/IEC 27001/2 and the ISA/IEC 62443 series of standards for OT/IACS environments. This document touches upon: ✅ The distinct yet complementary roles of ISO/IEC 27001/2 and ISA/IEC 62443 in managing IT and OT cybersecurity risks. ✅ How the ISA/IEC 62443 series addresses the specific needs of OT environments, while ISO/IEC 27001/2 establishes a broader information security management framework. ✅ Practical insights on combining these standards to protect OT infrastructure and extend security management systems effectively. ✅ Recommendations for adapting and aligning security controls for robust OT cybersecurity governance. #SCADASecurity #CyberSecurity #ICS #icssecurity #icscybersecurity #otsecurity #otcybersecurity #industrialautomation #IACSCybersecurity #industrialcybersecurity

CyberSec First Responder (CFR-310) Details This course covers network defense and incident response methods, tactics, and procedures that are in alignment with industry frameworks such as NIST 800-61r2 (Computer Security Incident Handling Guide), US-CERT's National Cyber Incident Response Plan (NCIRP), and Presidential Policy Directive (PPD)-41 on Cyber Incident Coordination. It is ideal for candidates who have been tasked with the responsibility of monitoring and detecting security incidents in information systems and networks, and for executing standardized responses to such incidents. The course introduces tools, tactics, and procedures to manage cybersecurity risks, identify various types of common threats, evaluate the organization's security, collect and analyze cybersecurity intelligence, and remediate and report incidents as they occur. This course provides a comprehensive methodology for individuals responsible for defending the cybersecurity of their organization. In addition, this course and subsequent certification meet all requirements for personnel requiring DoD directive 8570.01-M position certification baselines: - CSSP Analyst - CSSP Infrastructure Support - CSSP Incident Responder - CSSP Auditor #CyberSecFirstResponder #CyberSec

🚀 Held a valuable session today with HYDRATECH Saudi on the importance of cybersecurity for companies. We reviewed steps to obtain Aramco's Cybersecurity Certificate (CCC), essential for enhancing security and compliance. 💼 Cybersecurity is vital for business continuity!

National Cybersecurity Authority Drives Saudi Arabia's Essential Controls Framework (ECC): Written by AuditCue.The Kingdom of Saudi Arabia's Essential Cybersecurity Controls (ECC), established by the National Cybersecurity Authority (NCA), is a significant leap towards enhancing the nation's cyber defense mechanisms. This set of regulations spans across five critical domains, emphasizing a holistic approach to cybersecurity governance, defense, resilience, third-party/cloud computing, and industrial control systems. With a suite of 114 controls, it aligns with and diverges from int...