Cyber-security baseline (NCSC Cyber Essentials – UK)
Assesses the implementation of foundational cyber security controls, fulfilling the Amānah (trust) to safeguard stakeholder data. This protects against common threats, ensures operational continuity, and upholds the principles of Ḥifẓ al-Māl (protection of wealth) and Ḥifẓ al-ʿIrd (protection of dignity/reputation). It operationalizes GDPR/DPA 2018 integrity and confidentiality duties (Art. 5(1)(f), Art. 32), prevents ḍarar (harm), and enables trustee oversight of material internal controls.
Ḥifẓ al-Māl
Protection of wealth: safeguarding digital assets and financial systems from theft or destruction.
Ḥifẓ al-ʿIrd
Protection of dignity/reputation: preventing data breaches that expose sensitive personal information of beneficiaries.
Lā ḍarar wa lā ḍirār
No harm and no reciprocating harm: The obligation to prevent foreseeable cyber harm to the organization and its stakeholders.
Sadd al-dharā’iʿ
Blocking the means: Implementing preventive controls (like MFA and patching) to block pathways that lead to harm.
Amānah
Trust/Stewardship: The moral and legal duty to safeguard data entrusted to the organization.
Iḥsān
Excellence: Going beyond minimum compliance (e.g., CE Plus) to ensure robust protection.
Discussion (1)
📋 **Version updated: 1.0.0 → 2.9.7** **Changes:** Updated islamic_references from mizan-297.json
Sign in to post a comment.