UAE Cyber Security Compliance Solutions
We are dedicated to delivering the highest quality of information security, data protection advisory, and support services to our clients in the UAE.
Avoiding cyber attacks is a priority for companies and regulators globally have increased efforts to manage this risk by putting in place a framework of rules and regulations. In the UAE, firms operating under the Dubai Financial Services Authority (“DFSA”), the financial regulator of the Dubai International Financial Center (“DIFC”), and the Financial Services Regulatory Authority (“FSRA”), the financial regulator of the Abu Dhabi Global Market (“ADGM”) are expected to abide by rules to avoid any breaches, fines or public censures.
Recent regulatory developments in the UAE have included:
- The DFSA implemented new rules and guidance relating to cyber risk management that have been effective from 1 January 2024. Please refer to section 5.5 of the DFSA General Rulebook.
- The FSRA published the IT Risk Management Guidance on 20 November 2024, following consideration of comments received from industry participants on the Discussion Paper.
How Waystone Compliance Solutions can help
Our Middle East Solutions team is dedicated to delivering the highest quality of information security and data protection advisory and support services to our clients. We work with firms, their senior managers and the regulatory authorities in the Middle East to comply with the rules and help to put in place comprehensive systems and controls.
We offer three core service packages, which can be delivered standalone or combined with other packages, and bespoke cyber security solutions to meet your needs:
Implementation Package: including cyber risk management framework and cyber risk register, IT/Cyber Security Policy, and incident response plan Silver and Gold Packages (annual service):| Silver | Gold | |
|---|---|---|
| Penetration test | 1 | 1 + continuous vulnerability assessment and quarterly reporting |
| Employee cyber security training session | 1 | 2 |
| Phishing campaign | 2 | 4 |
| Annual cyber security assessment | 1 | 2 |
| Vendor due diligence assessments | 3 | 10 |
| Cyber industry and regulatory news and updates | Continuous | Continuous |
| Annual review of relevant policies | 1 | 1 |
| Support and advice relating to a regulator’s Regulatory Risk Assessment | 4 hours | 8 hours |
Bespoke Services
Waystone can create bespoke packages or individual services to meet your needs. In addition to the above, these include:
- Cyber security assessments and testing:
- Penetration testing
- Vulnerability assessments
- Scenario-based testing
- Social engineering
- Phishing assessments
- Microsoft Office 365 risk assessment
- threat assessments/research
- Chief Information Security Officer (CISO) as a service
- NESA compliance assessments
- Advisory services to ‘C-Suite’ and board on all aspects of cyber, information security and data protection issues
Why Choose Waystone Compliance Solutions
Waystone serves clients in the Middle East and globally with local, regional, and international services:
- Extensive service capabilities: We offer end-to-end independent, information security consultancy and advisory solutions by our team of experienced cyber security and compliance professionals; from technical support to functional advice we can service all requirements
- Depth of experience: We have been operating for more than 10 years in the cyber security and financial services sphere and our three principals have more than 75 years of information security and data protection experience
- Partnership approach: We are relationship and trust builders, collaborating closely with our clients to ensure their cyber security framework is robust and meets regulatory requirements
- Local and global reach: Our global scale enables us to work with both financial services clients in the Middle East and those operating worldwide, with our client base including large financial institutions and asset managers to boutique investment firms
- Operational excellence: Our robust and efficient approach, industry certifications, reliable service and value for money services sets us apart and leads
If you would like to find out more about how to mitigate your cyber security risk, please reach out to Shadi Dajani, Executive Director Global Compliance Solutions, or contact us below.