Skip to content Skip to Search
Skip navigation

UAE cybersecurity is failing, say IT executives

By Divsha Bhat
Mohammed Al Kuwaiti, head of cybersecurity for the UAE government. Lack of resources and too many manual processes are just a few of the IT safety issues facing companies Wam
Mohammed Al Kuwaiti, head of cybersecurity for the UAE government. Lack of resources and too many manual processes are just a few of the IT safety issues facing companies
  • Rise in undetected attacks
  • Lack of IT skills a priority
  • Human error undermines tech

Inadequate technology is one of the primary causes of data breaches suffered by UAE companies, despite huge investments made by IT departments in the Gulf state to combat cyberattacks, say experts.

Companies in the Mena region spent $2.8 billion on cybersecurity last year, according to US technology research and consulting firm Gartner. 

Yet a report by Trellix, a US cybersecurity company, found that over half of chief information security officers (CISOs) surveyed in the UAE whose organisation had suffered a cyberattack, said their technology did not detect the breach.

Other top causes included issues due to the organisation’s lack of resources, lack of IT skills and too many manual processes, which hurt the mean time to detect or repair.

The UAE is faced with around 50,000 attacks a day “and the number is only increasing”, the Gulf state’s head of cybersecurity Dr Mohamed Al Kuwaiti said in a statement in May this year.

Trellix’s study interviewed 500 security officers, each with a minimum of 1,000 UAE employees, from industries including energy and utilities, healthcare, public sectors, manufacturing and production and financial services. Every respondent experienced at least one cyber incident in the past five years.

One head of information security and risk management at a leading bank in the UAE, who did not wish to be named, told AGBI that there is little technology can do.

“When implementing a new solution, security leaders often lean towards advanced features, overlooking the set-up of basic security controls, under the assumption that they come automatically. However, that is not the case,” the bank official said.

“For instance, though we receive one-time passwords via SMS or email during online transactions, we often overlook verifying if it corresponds to the intended transaction.

“Technology can only do so much to mitigate the impact of human mistakes.”

The number of CISOs attributing the root cause of cyber incidents to a lack of detection has risen over time, the report showed. 

Three years ago technology failing to detect an attack formed the root cause for only 9 percent of incidents. In the past year it has grown to 22 percent.

“A fragmented security infrastructure can result in blind spots, where certain types of threats go undetected due to the lack of coordination between different security tools,” Kausar Nur Mukeri, vice president of information security at private school provider Gems Education, said.

CISOs also felt that people, processes and technology needed an overhaul in the IT departments after a breach has occurred.

Almost all respondents to the Trellix survey agreed that some improvements were needed in their processes. All said their organisation had to make some improvements in terms of people and technology.

“Organisations should adopt a holistic and proactive approach to cybersecurity,” Mukeri said.

“This involves a combination of advanced technologies, end-to-end visibility, integration of all security technologies, regular security assessments, employee awareness and a robust incident response plan.”

Latest articles

A construction site in Cairo. Egypt received the final tranche of ADQ funding for Ras El Hekma last week

Work on ADQ-backed resort in Egypt ‘to start this year’

ADQ will begin building the infrastructure for its Ras El Hekma development on Egypt’s north coast before the end of this year, according to housing minister Assem El Gazzar. The Abu Dhabi sovereign wealth fund had said it would break ground in early 2025, but it has yet to announce the names of contractors or […]

more than 420,000sq m of new Grade A office space is expected to become available before the end of the year 2WXWXWP Riyadh, Saudi Arabia - Mar 25 2024,King Abdullah Financial District , KAFD business towers

Foreign companies push up cost of Riyadh’s scarce office space

Rental rates in Riyadh’s office sector rose by up to 36 percent in the first quarter of this year as a result of increased demand from foreign companies and occupancy rates approaching 100 percent. Three quarters of all enquiries for office space directed to the real estate company Savills in the first three months of […]

Iranian president Ebrahim Raisi died in a helicopter crash following a trip to the Azerbaijan border

Oil prices steady following death of Iranian president

Oil prices remained steady on Monday morning following the death of Iranian president Ebrahim Raisi, who was killed over the weekend in a helicopter crash in mountains near Iran’s border with Azerbaijan. Brent crude rose less than 1 percent percent at $84.37 a barrel – slightly below the estimated breakeven price at which Saudi Arabia, […]

Kuwaits Beyout Investment Group is selling a 30 percent stake, or 90 million shares, on the local bourse

Kuwait’s Beyout targets $147m from IPO

Kuwait’s Beyout Investment Group (BIG) has set the price of its initial public offering (IPO) between 480 and 500 fils per share.  The company plans to raise up to KD45,000,000 ($147 million) by selling a 30 percent stake, or 90 million shares, on the local bourse, the first in nearly two years. The final offer […]