NCA introduces Essential Cybersecurity Controls (ECC-1:2018) to establish essential requirements, aligning with best practices and standards, mitigating cyber risks from internal and external threats. Comprising 114 controls across five domains.

NCA ECC’s core objective is to establish crucial cybersecurity requirements, aligning with industry-leading practices. This proactive approach mitigates cybersecurity risks from both internal and external threats. The paramount focus is on safeguarding an organization’s information and technology assets, with a dedicated emphasis on Confidentiality, Integrity, and Availability. NCA ECC takes into account the four primary cybersecurity pillars: Strategy, People, Processes, and Technology.