All digital systems and services are secure by design.
Risk-based security controls are included across systems and networks.
The enterprise architecture is aligned with the Dubai Electronic Security Center's cybersecurity framework, cloud security standards, and IoT standards where applicable.
Compliance is maintained throughout the development, deployment, and operation phases of systems, particularly in critical systems and national infrastructure.
Projects for new information security applications are managed, including the implementation of a zero-trust policy.
