Saudi Arabia: Opened Consultation on Cybersecurity Guidelines for Internet of Things

On 7 August 2023, the National Cybersecurity Authority (NCA) published a draft of its Cybersecurity Guidelines for the Internet of Things and opened a public consultation until 31 August 2023. The guidelines would apply to all entities that use Internet of Things (IoT) technologies and contain guiding principles. Four topics are addressed. First, IoT's strategy and goals must take cybersecurity into account, and roles and responsibilities must be defined. Second, adequate defence mechanisms must be in place, and third, consequences of cybersecurity incidents must be reduced to a minimum. Finally, risks coming from the involvement of third parties in IoT must be mitigated (third party and cloud computing cybersecurity).