National Cyber Security Centre releases draft plan to protect information systems 

AMMAN — The National Cyber Security Centre (NCSC) has released a draft of the National Cyber Security Framework for public consultation, which is a plan to protect the information systems of public and private sectors, NCSC President Bassam Maharmeh said on Saturday.  

In an interview with the Jordan News Agency, Petra, Maharmeh said that the draft comprises a comprehensive set of measures, mechanisms, controls, principles and standards that institutions must adopt and implement correctly to enhance the security of the Kingdom's cyber systems and elevate information protection to a higher level. 

He highlighted that currently most institutions lack specific standards for information security, adding that the standards included in the National Cyber Security Framework will become mandatory after an initial grace period.  He expressed hope that the centre would receive feedback to continue the process of finalising and implementing the framework in accordance with established procedures. 

Each institution will be required to apply controls and standards that align with the threats and risks they face, he said. He noted that during the past year, the centre dealt with 1,362 incidents affecting government institutions and private companies.

Of these incidents, 26 per cent were classified as high-risk and critical.  According to the centre's statistics, the healthcare sector was the most targeted in 2022, accounting for 9 per cent of total incidents. The commercial sector, particularly medium and small enterprises with limited resources for information protection, was also targeted.