Skip to content Skip to Search
Skip navigation

UAE cybersecurity is failing, say IT executives

Mohammed Al Kuwaiti, head of cybersecurity for the UAE government. Lack of resources and too many manual processes are just a few of the IT safety issues facing companies Wam
Mohammed Al Kuwaiti, head of cybersecurity for the UAE government. Lack of resources and too many manual processes are just a few of the IT safety issues facing companies
  • Rise in undetected attacks
  • Lack of IT skills a priority
  • Human error undermines tech

Inadequate technology is one of the primary causes of data breaches suffered by UAE companies, despite huge investments made by IT departments in the Gulf state to combat cyberattacks, say experts.

Companies in the Mena region spent $2.8 billion on cybersecurity last year, according to US technology research and consulting firm Gartner. 

Yet a report by Trellix, a US cybersecurity company, found that over half of chief information security officers (CISOs) surveyed in the UAE whose organisation had suffered a cyberattack, said their technology did not detect the breach.

Other top causes included issues due to the organisation’s lack of resources, lack of IT skills and too many manual processes, which hurt the mean time to detect or repair.

The UAE is faced with around 50,000 attacks a day “and the number is only increasing”, the Gulf state’s head of cybersecurity Dr Mohamed Al Kuwaiti said in a statement in May this year.

Trellix’s study interviewed 500 security officers, each with a minimum of 1,000 UAE employees, from industries including energy and utilities, healthcare, public sectors, manufacturing and production and financial services. Every respondent experienced at least one cyber incident in the past five years.

One head of information security and risk management at a leading bank in the UAE, who did not wish to be named, told AGBI that there is little technology can do.

“When implementing a new solution, security leaders often lean towards advanced features, overlooking the set-up of basic security controls, under the assumption that they come automatically. However, that is not the case,” the bank official said.

“For instance, though we receive one-time passwords via SMS or email during online transactions, we often overlook verifying if it corresponds to the intended transaction.

“Technology can only do so much to mitigate the impact of human mistakes.”

The number of CISOs attributing the root cause of cyber incidents to a lack of detection has risen over time, the report showed. 

Three years ago technology failing to detect an attack formed the root cause for only 9 percent of incidents. In the past year it has grown to 22 percent.

“A fragmented security infrastructure can result in blind spots, where certain types of threats go undetected due to the lack of coordination between different security tools,” Kausar Nur Mukeri, vice president of information security at private school provider Gems Education, said.

CISOs also felt that people, processes and technology needed an overhaul in the IT departments after a breach has occurred.

Almost all respondents to the Trellix survey agreed that some improvements were needed in their processes. All said their organisation had to make some improvements in terms of people and technology.

“Organisations should adopt a holistic and proactive approach to cybersecurity,” Mukeri said.

“This involves a combination of advanced technologies, end-to-end visibility, integration of all security technologies, regular security assessments, employee awareness and a robust incident response plan.”

Latest articles

A water taxi in Dubai's Business Bay, where off-plan real estate prices surged in 2023

Prices stabilise in Dubai’s off-plan market as supply grows

Prices for off-plan real estate in Dubai are stabilising following a spike in 2023 as developers bring more projects to the market. Property prices for off-plan purchases in areas such as Dubai Hills, Business Bay and Jumeirah Village Circle increased by as much as 30 percent in 2023 compared to the previous year. In August, […]

Saudi grocery retailer BinDawood to invest $390m in delivery hubs

BinDawood to invest $390m in delivery hubs

Saudi grocery retailer BinDawood Holding has announced plans to invest SAR1.5 billion ($390 million) in robotics and delivery hubs. CEO Ahmad BinDawood confirmed that the investment, with partners, would be made in the company’s automated “dark stores” and the infrastructure needed to run them. The stores, typically hubs for online shopping orders, will range from […]

The Maaden-Alcoa joint venture, established in 2009, is a fully integrated mining complex in Saudi Arabia

Maaden to buy Alcoa stake in Saudi venture for $1.1bn

Saudi Arabian Mining Company (Maaden) will purchase a 25.1 percent stake from US aluminium producer Alcoa in their joint venture for $1.1 billion. The transaction includes 86 million shares of Maaden, valued at ​$950 million, and $150 million in cash. The joint venture, established in 2009, is a fully integrated mining complex in Saudi Arabia consisting of […]

Saipem's EPC contract will help sustain production at QatarEnergy LNG's North Field offshore natural gas reservoir

QatarEnergy LNG awards $4bn contract to Saipem

QatarEnergy LNG, one of the world’s largest liquefied natural gas (LNG) companies, has awarded a $4 billion contract to Italy’s Saipem to boost its gas production. The engineering, procurement and construction (EPC) contract will aid in sustaining production at the North Field natural gas reservoir off the northeast coast of Qatar. The work scope includes the […]