Skip to content Skip to Search
Skip navigation

UAE cybersecurity is failing, say IT executives

By Divsha Bhat
Mohammed Al Kuwaiti, head of cybersecurity for the UAE government. Lack of resources and too many manual processes are just a few of the IT safety issues facing companies Wam
Mohammed Al Kuwaiti, head of cybersecurity for the UAE government. Lack of resources and too many manual processes are just a few of the IT safety issues facing companies
  • Rise in undetected attacks
  • Lack of IT skills a priority
  • Human error undermines tech

Inadequate technology is one of the primary causes of data breaches suffered by UAE companies, despite huge investments made by IT departments in the Gulf state to combat cyberattacks, say experts.

Companies in the Mena region spent $2.8 billion on cybersecurity last year, according to US technology research and consulting firm Gartner. 

Yet a report by Trellix, a US cybersecurity company, found that over half of chief information security officers (CISOs) surveyed in the UAE whose organisation had suffered a cyberattack, said their technology did not detect the breach.

Other top causes included issues due to the organisation’s lack of resources, lack of IT skills and too many manual processes, which hurt the mean time to detect or repair.

The UAE is faced with around 50,000 attacks a day “and the number is only increasing”, the Gulf state’s head of cybersecurity Dr Mohamed Al Kuwaiti said in a statement in May this year.

Trellix’s study interviewed 500 security officers, each with a minimum of 1,000 UAE employees, from industries including energy and utilities, healthcare, public sectors, manufacturing and production and financial services. Every respondent experienced at least one cyber incident in the past five years.

One head of information security and risk management at a leading bank in the UAE, who did not wish to be named, told AGBI that there is little technology can do.

“When implementing a new solution, security leaders often lean towards advanced features, overlooking the set-up of basic security controls, under the assumption that they come automatically. However, that is not the case,” the bank official said.

“For instance, though we receive one-time passwords via SMS or email during online transactions, we often overlook verifying if it corresponds to the intended transaction.

“Technology can only do so much to mitigate the impact of human mistakes.”

The number of CISOs attributing the root cause of cyber incidents to a lack of detection has risen over time, the report showed. 

Three years ago technology failing to detect an attack formed the root cause for only 9 percent of incidents. In the past year it has grown to 22 percent.

“A fragmented security infrastructure can result in blind spots, where certain types of threats go undetected due to the lack of coordination between different security tools,” Kausar Nur Mukeri, vice president of information security at private school provider Gems Education, said.

CISOs also felt that people, processes and technology needed an overhaul in the IT departments after a breach has occurred.

Almost all respondents to the Trellix survey agreed that some improvements were needed in their processes. All said their organisation had to make some improvements in terms of people and technology.

“Organisations should adopt a holistic and proactive approach to cybersecurity,” Mukeri said.

“This involves a combination of advanced technologies, end-to-end visibility, integration of all security technologies, regular security assessments, employee awareness and a robust incident response plan.”

Latest articles

Investors at the Dubai Financial Market. Drake & Scull was suspended from trading in 2018

Drake & Scull losses narrow before return to trading

Dubai contractor Drake & Scull International has trimmed its losses in the first quarter of this year as it nears the end of a drawn-out capital restructuring process. The Dubai-based utilities and infrastructure engineering company said in a press release accompanying disclosures to the Dubai Financial Market (DFM) that revenue jumped 55 percent year on […]

Gas Pump, Machine, Pump

Adnoc Distribution to expand as earnings rise

Adnoc Distribution plans to open 15 to 20 more fuelling stations in 2024 after opening eight in the UAE, Saudi Arabia and Egypt in the year so far. The expansion increased fuel and non-fuel sales, driving revenue up by over 9 percent year on year to AED8.7 billion ($2.4 billion) in the three months to […]

Patrick Pouyanné, CEO of TotalEnergies, said last month that he expects the first phase of the project to be completed in 2025

Iraq forges ahead with plans for first big solar plant

Iraq is proceeding with its first large-scale solar plant, which will be constructed by France’s TotalEnergies. The 1GW plant will be built in Basra, southern Iraq, as part of a $27 billion investment agreement for an integrated project that includes four oil, gas and renewables facilities. According to reports it will supply clean electricity equivalent […]

Architecture, Building, Factory Parkin said total revenue rose 8 percent to AED215.3 million, supported by an increase in public parking revenue parking cars motoring

Q1 profits rise 5% at Dubai’s Parkin

The Dubai government’s parking management company Parkin reported a 5 percent increase year on year in net earnings for the first quarter of 202. This is despite the introduction of a 9 percent standard corporate tax from January this year. Net profit rose to AED103.7 million ($28.2 million) in January to the end of March, […]