The UAE’s National Cybersecurity strategy (PDF 18.7 MB) aims to create a safe and strong cyber infrastructure in the UAE that enables citizens to fulfill their aspirations and empowers businesses to thrive. The updated version of the strategy was launched in 2019 by Telecommunications Regulatory Authority (TRA), the entity which is responsible for the ICT sector and digital transformation in the country. The strategy is based on 5 pillars and 60 initiatives aiming to mobilise the whole cybersecurity ecosystem in the UAE.
Pillars and goals of the strategy
- Implementing a comprehensive legal and regulatory framework that will cover all types of cybercrimes, secure existing and emerging technologies and protect SMEs against most common cyber threats.
- Enabling a vibrant cybersecurity ecosystem by:
- tapping into the opportunity of AED 1.8 billion cybersecurity market in the UAE and the AED 18 billion cybersecurity market in MENA
- developing capabilities of more than 40,000 cybersecurity professionals, encouraging professionals and students to pursue a career in cybersecurity, developing necessary cybersecurity capabilities and fostering a vibrant ecosystem of cybersecurity training providers
- creating a cybersecurity citizen-awareness by enabling citizens to realize the risks related to the cyberspace, influencing citizen mindsets to practice cyber hygiene and encouraging institutions to spread cyber awareness
- rewarding excellence in cybersecurity through a national awards programme by encouraging organisations to drive cybersecurity programmes, inspiring entrepreneurs to innovate in cybersecurity, supporting cutting-edge research undertaken by academic institutions and motivating students to pursue cybersecurity careers.
- Establishing a robust ‘National Cyber Incident Response Plan’ to enable swift and coordinated response to cyber incidents in the UAE by:
- streamlining cybersecurity incident detection and reporting
- establishing standardised severity assessment matrix to mobilise the required support
- building world-class capabilities to respond to all types of cyber incidents.
- Protecting critical assets of the UAE in these 9 sectors:
- Electricity and water
- Finance and insurance
- Emergency services
- Health services
- Food and agriculture.
- Mobilising the whole ecosystem through local and global partnerships to jointly achieve cybersecurity goals and ambitions. This would include:
- the public sector
- the private sector
- international consortia.
TRA will monitor the progress and impact of the National Cybersecurity strategy through multiple governance vehicles to implement the Critical Information Infrastructure Protection Program (CIIP) and the National Incident Response Plan. It will further assess the National Cybersecurity Strategy through more than 20 clearly-defined key performance metrics. Read more about UAE’s National Cybersecurity Strategy on the website of TRA.
The National Cybersecurity Strategy will be in force for three years from the date of its launch in June 2019. After that, It will be revised and updated according to the new cybersecurity developments and observations of experts in the field and of the parties implementing the strategy’s initiatives and programs.
Updated on 30 Jun 2020