ADHICS in UAE2022-12-28T06:29:23+00:00


Home » Home-UAE » ADHICS in UAE

What is ADHICS

ADHICS is the abbreviation for Abu Dhabi Healthcare Information and Cyber Security Standard. The Abu Dhabi Department of Health (DoH) is the sole regulator of the healthcare division in Abu Dhabi. The DoH published the ADHICS Standards on 3 February 2019 to protect the privacy and security of health information. ADHICS Standard intends to improve healthcare cybersecurity in the UAE to the next level by meeting international healthcare cyber security and privacy practices. ADHICS also aids the healthcare sector meet the required compliance with UAE Information Assurance Standards.

ValueMentor is a leading Risk & Compliance service provider in UAE, helping companies achieve ADHICS Compliance by performing ADHICS Audit. We have a proven record of helping companies in the healthcare sector become compliant with ADHICS standards. Our experts handhold you in achieving ADHICS Compliance in UAE. Achieve healthcare compliance by adhering to ADHICS standards and policy.

Our ADHICS Consultancy Services

Our ADHICS Consultancy Services

Would you like to speak to a ADHICS Consultant?


Phase 1 – Assessment

The first phase of an ADHICS Audit & Compliance project is to assess the current state of compliance.

Identify Critical Assets

  • Project Initiation
  • Understand the organization
  • Identify critical business services
  • Identify information infrastructure

ADHICS Controls Identification

  • Identify cyber security controls that can mitigate the risks in line with ADHICS Compliance requirements.
  • Define ADHICS Risk Treatment Plan

Gap & Risk Assessment

  • Inspection of current risk state using ADHICS Standard
  • Discovering threats & vulnerabilities by exploiting the gaps

Phase 2 – Control Development

This second phase of the ADHICS Audit is to develop the controls to treat the risks identified. ISMS Risk Treatment Plan provides the directions for this phase of the implementation.

NESA Policies & Procedures

Policies and procedures provide the base for executing cyber security best practices within the organization.

Security Awareness

Humans are often considered the most vulnerable connection in cyber security. Security Awareness & Training provides them with adequate learning on cyber security.

Technology Controls

  • Security Architecture
  • Technology Gaps
  • Configuration Advisory

Management Controls

  • Operational Controls
  • Physical Security
  • Managerial Controls

Phase 3 – Security Services

This phase of the Engagement executes cyber security best practices for the organization. Some of the key services performed by the ValueMentor Team are:

Periodic Security Testing

SIEM & Incident Response

  • SIEM Solution Deployment
  • 24×7 Security Monitoring
  • Security Device Management

Managed Network Security

  • Next Gen Firewalls, UTMs
  • URL Filter, Web Security
  • Wi-Fi Security
  • VPN and Remote Access Security

Data & Endpoint Security

  • DLP Solutions
  • Patch Management
  • Endpoint Security
  • Mobile Device Management

Phase 4 – Compliance Review

A periodic review of the ISMS Compliance status is critical for the success of the Information Security Management System.

ISMS Performance Review

Assess the performance of the ISMS against the defined metrics. It is a significant measure towards the continual improvement of the ISMS.

ISMS Internal Audits

Perform periodic ISMS Audits to assess compliance with the defined policies and procedures

Mock Compliance Audit

Perform Mock Compliance Audits that help you identify the weak areas of ISMS implementation.

External Audit Support

Assist the customer during the Compliance Audit to meet the required ISMS requirements.

Would you like to speak to a ADHICS Consultant?


Other Services In UAE


Related Insights

  • Gaming Security
    September 15, 2023
  • PCI Penetration Test
    September 12, 2023
  • Security Testing Services — Uncategorized
    September 6, 2023
Read all articles

Frequently Asked Questions (FAQ)

1. What is the applicability of the ADHICS Standard?2022-09-20T10:43:41+00:00

Abu Dhabi Healthcare Information and Cyber Security (ADHICS) Standard scopes all healthcare organizations and associated services in Abu Dhabi.

Implementing the standard goes mandatory irrespective of the public or private sector, which includes: –

  • Hospitals
  • Clinics
  • Pharmacies
  • Healthcare services
  • Healthcare insurance services
  • Third-party partners
  • Other medical facilities
2. Why should your organization opt for ADHICS?2022-09-20T10:46:51+00:00

The Healthcare sector goes extremely time-critical, and any weak information controls could leave you with delays in delivering the required services to the needy’s. The risk of phishing attacks and data breaches goes heavier in the healthcare sector. Effective compliance with ADHICS Standard can keep your information controls upright and prevent unwanted intrusions or attacks. Also, adherence to the ADHICS security controls helps you stick with regulatory and other legal commitments.


3. How does ADHICS benefits the healthcare sector?2022-09-20T10:47:58+00:00

ADHICS standards help enhance the data privacy of healthcare entities in UAE to higher levels using best practices and policies of information security. Compliance with the ADHICS standard advantages the industry by: –

  • Protecting critical healthcare information
  • Gaining information assurance control
  • Improving the security posture of organizations
  • Improving customer trust and reliability
  • Protecting the goodwill of healthcare service providers
  • Ensuring the needed business continuity
Go to Top