Requirement:
The organization must comply with related national cybersecurity laws and regulations.
Control Implementation Guidelines:
- Work with stakeholders in the organization (i.e., legal function and governance and compliance function) to identify, document, and periodically update a list of national cybersecurity laws and regulations and related requirements that are relevant to the organizations operations and issued by the National Cybersecurity Authority (NCA) (which might include, but not limited to, royal orders and decrees, orders issued by the Council of Ministers, and official circulars and regulatory orders issued by the National Cybersecurity Authority (NCA)).
- Ensure compliance with all national cybersecurity laws and regulations requirements referred to in the previous point.
- Provide necessary technologies; to verify compliance with national cybersecurity laws and regulations
- Prepare periodic reports for organizations compliance with all national cybersecurity laws and regulations to be submitted to the National Cybersecurity Authority (NCA) whenever requested.
Relevant Cybersecurity Tools:
- Compliance with Cybersecurity Standard controls, Laws and Regulations Policy Template.
Expected Deliverables:
- A document (such as a policy, procedure, or/and letter approved by the authorization official) indicating the identification and documentation of the requirements related to this control
- An updated list that clarifies the national cybersecurity laws and regulations that are relevant to the organizations operations and issued by the national Cybersecurity Authority (NCA).
- A report that clarifies the extent of organizations compliance with national cybersecurity laws and regulations applicable to the organization
Quick & Simple
Discover Our Cybersecurity Compliance Solutions:
Whether you need to meet and maintain your compliance requirements, help your clients meet them, or verify supplier compliance we have the expertise and solution for you
CMMC Level 1 Compliance
Become compliant, provide compliance services, or verify partner compliance with CMMC Level 1 Basic Safeguarding of Covered Contractor Information Systems requirements.
NIST SP 800-171 & CMMC Level 2 Compliance
Become compliant, provide compliance services, or verify partner compliance with NIST SP 800-171 and CMMC Level 2 requirements.
HIPAA Compliance
Become compliant, provide compliance services, or verify partner compliance with HIPAA security rule requirements.
ISO 27001 Compliance
Become compliant, provide compliance services, or verify partner compliance with ISO 27001 requirements.
FAR 52.204-21 Compliance
Become compliant, provide compliance services, or verify partner compliance with FAR 52.204-21 Basic Safeguarding of Covered Contractor Information Systems requirements.