Trusted across MENA8 frameworks · 32 integrations

The MENA Region's
Compliance Automation Platform

Stop doing compliance manually. NetGuard connects to your infrastructure and automatically checks 947 controls across 8 frameworks — including SACS-002, NCA ECC, SAMA CSF, and CBB CSF. Audit-ready in hours, not months.

Request a ProposalSee how it works →
SOC 2 ready
PCI DSS 4.0
ISO 27001
NIST CSF
SACS-002
NCA ECC
SAMA CSF
CBB CSF
app.netguardapp.io/dashboard
Last scan: 2h ago
Security Overview
Latest scan · 947 controls evaluated
Overall Score
87%
+3%
Passing
89
+6
Failing
11
-2
Warnings
4
±0
Framework Coverage
SOC 2
87%
PCI DSS
74%
ISO 27001
91%
ControlSourceStatus
Interactive demo — try the sidebar tabs, run a scan, filter controls, or click any row
947across 8 frameworks
8compliance frameworks
32integrations connected
54%automated on connection
Connects to your existing stack
☁️AWS
🌐Azure
🔵GCP
🔐Okta
🛡️Palo Alto
📡Cisco Meraki
🐙GitHub
🦊GitLab
🔥Firebase
🌊DigitalOcean
📧Google Workspace
🪟Microsoft 365
💬Slack
🌩️Cloudflare
📋Jira
🍎Jamf Pro
🖥️Intune
🎣KnowBe4
🐍Snyk
🔍GitHub Advanced
🔒AWS Security Hub
🛡️Microsoft Defender
🔭Microsoft Sentinel
🎫ServiceNow
🦅CrowdStrike Falcon
How it works

From messy infra to
audit-ready in hours

Three steps. No agents to maintain on modern systems. No consultants needed.

01
🔌
Connect your infrastructure
Grant read-only access to AWS, Okta, your firewall, and SIEM. Takes 10 minutes per integration. We never write — only observe.
02
We collect and map automatically
NetGuard pulls your configs daily, evaluates them against controls across SOC 2, PCI DSS, ISO 27001, NIST CSF, SACS-002, NCA ECC, SAMA CSF, and CBB Cybersecurity Framework — no manual work.
03
📄
Generate auditor-ready reports
Export a full evidence package with timestamped proof per control. Your auditor gets exactly what they need. You get your time back.
Features

Built for the Entire MENA Compliance Ecosystem

The only platform supporting SACS-002, NCA ECC 2024, SAMA CSF, CBB CSF, and more — frameworks not covered by Vanta, Drata, or Sprinto.

MENA-First
Built for the Entire MENA Compliance Ecosystem
The only platform supporting SACS-002, NCA ECC 2024, SAMA CSF, CBB CSF, and more — frameworks not covered by Vanta, Drata, or Sprinto.
Central Banks & Regulators: Full financial sector coverage
Oil & Gas: SACS-002 compliance for Saudi Aramco suppliers
Government & CNI: NCA ECC-aligned compliance
Enterprises: Automated vendor risk & assurance
SMEs & Startups: Fast-track certifications to win contracts
Automation
947 Controls, 54% Automated
Stop collecting screenshots. NetGuard connects to your AWS, Azure, GitHub, Okta, and 27 other integrations to automatically verify controls — and show you exactly what’s failing and why.
Read-only API access only
Timestamped evidence snapshots
Auto-retry on failed collections
Reporting
Audit-Ready Reports in One Click
Generate C-Level, Summary, and Technical compliance reports instantly. Export a complete audit package with cover letter, evidence PDFs, and control matrix — everything your auditor needs, ready before they ask.
C-Level: business impact, zero jargon
Summary: category scores + key findings
Technical: evidence + numbered fix steps
Network-depth
Built for Network Engineers
NetGuard checks what generic tools miss — firewall rules, network segmentation, Palo Alto configurations, Cisco Meraki policies. PCI DSS Requirement 1 automated.
PCI DSS Requirement 1 (firewall)
Network segmentation validation
On-prem & cloud hybrid support
AI Assistant
AI Compliance Assistant
Ask NetGuard anything about your compliance posture. Powered by Claude AI with full context of your infrastructure and failing controls.
Natural language queries
Full infrastructure context
Remediation recommendations

Built for the Entire MENA Compliance Ecosystem

🏦
Central Banks & Regulators
Full financial sector coverage for CBB and SAMA-regulated institutions
🛢️
Oil & Gas
SACS-002 compliance for Saudi Aramco suppliers — CCC certification ready
🏛️
Government & CNI
NCA ECC-aligned compliance for Saudi government entities and critical national infrastructure
🏢
Enterprises
Automated vendor risk and assurance across SOC 2, ISO 27001, and GCC frameworks
🚀
SMEs & Startups
Fast-track certifications to win enterprise contracts and bank partnerships
Reports

One scan.
Three reports. Every audience covered.

Run a scan once and instantly generate the right report for each stakeholder — no manual reformatting.

💼
C-Level Report
For: Board · CEO · CFO
Plain-English executive brief. No technical jargon — just business risk, what's exposed, and what leadership needs to do. Designed to be read in under 5 minutes.
Business risk score in plain language
Traffic-light security snapshot
Why it matters — business consequences
What to do — executive action items
📊
Summary Report
For: IT Manager · Compliance Officer
Balanced management overview with compliance score, category-by-category breakdown, and the top findings that need attention before the next audit.
Overall score with visual progress bar
Category compliance breakdown
Top 10 failing + warning controls
Framework coverage overview
🔧
Technical Report
For: IT Engineer · Security Team
Full IT detail. Every control, the raw evidence collected, and numbered step-by-step remediation instructions. The engineer gets exactly what they need to fix the issue.
Every control with raw evidence
Priority fix list sorted by severity
Numbered step-by-step remediation
Console commands & config paths included
Cross-Framework Mapping
See how every security check maps across SOC 2, PCI DSS, ISO 27001, and NIST CSF — simultaneously. One matrix view shows where you're covered and where gaps exist across all frameworks at once.
CheckSOC 2PCI DSSISO 27001NIST CSF
MFA EnforcedPASSPASSPASSPASS
SSH RestrictedFAILFAILFAILWARN
Audit LoggingPASSWARNPASSPASS
Data EncryptionPASSPASSFAILPASS
Frameworks

Automated Compliance Coverage

Connect your tools once. NetGuard automatically checks your compliance across every GCC and international framework.

GCC Frameworks — Only platform with native support
🇧🇭
CBB Cybersecurity Framework
Central Bank of Bahrain — mandatory for all CBB-licensed financial institutions
67% automated
109 controls
remaining controls guided with evidence upload
🇸🇦
NCA ECC 2-2024
Saudi Essential Cybersecurity Controls — mandatory for Saudi government entities and CNI
62% automated
110 controls
remaining controls guided with evidence upload
🛢️
SACS-002 (Saudi Aramco)
Saudi Aramco Third Party Cybersecurity Standard — required for Aramco suppliers
46% automated
92 controls
remaining controls guided with evidence upload
🏦
SAMA CSF
Saudi Monetary Authority — required for Saudi banks, insurance, and financial institutions
40% automated
121 controls
remaining controls guided with evidence upload
International Frameworks
💳
PCI DSS 4.0
Payment Card Industry standards with deep firewall rule coverage
57% automated
86 controls
remaining controls guided with evidence upload
🌐
ISO 27001:2022
International information security management standard
43% automated
114 controls
remaining controls guided with evidence upload
🛡
SOC 2 Type II
Trust Services Criteria for security, availability, and confidentiality
33% automated
76 controls
remaining controls guided with evidence upload
🏛
NIST CSF 2.0
Cybersecurity framework for critical infrastructure protection
39% automated
142 controls
remaining controls guided with evidence upload

Automation % reflects direct API verification via connected integrations. Remaining controls are governance and policy requirements — NetGuard guides you through exactly what evidence to upload.

Pricing

Plans built around your scope

All plans are billed annually via bank transfer. Pricing based on scope.

Starter
For startups getting their first SOC 2 or PCI certification.
Up to 3 users
3 compliance frameworks
2 integrations
Daily automated scans
Email alerts
PDF report export
Compliance calendar
AI policy generator
Request a Proposal
Growth
For scale-ups with active compliance programs and multiple frameworks.
Up to 15 users
All 8 compliance frameworks
5 integrations
Continuous monitoring
Slack + email alerts
Compliance calendar
Evidence management
AI policy generator
Microsoft Teams alerts
Public API
Request a Proposal
Most popular
Business
For growing teams that need AI-powered policy generation and deep integrations.
Up to 50 users
All frameworks + custom
Unlimited integrations
AI policy generator
Microsoft Teams alerts
Public API access
Priority support
Request a Proposal
Enterprise
For large organisations with complex on-prem and cloud hybrid environments.
Unlimited users
All frameworks
Custom connectors built
Custom control library
Dedicated onboarding
SLA + priority support
Request a Proposal
How we compare

Built for GCC. Not adapted for it.

Vanta, Drata and Sprinto are built for US companies. They have zero support for GCC regulatory frameworks. NetGuard was built from day one for the GCC market.

Framework / FeatureVantaDrataSprintoNetGuard
CBB CSF
SAMA CSF
NCA ECC 2-2024
SACS-002
SOC 2
ISO 27001
PCI DSS 4.0
NIST CSF
GCC Market Focus
Enterprise Proposals
Bank Transfer Invoicing

Competitor framework support verified April 2026

Your next audit doesn't have to be painful.
Join security teams that replaced spreadsheets and screenshots with automated evidence.
Request a Proposal →Talk to sales
Testimonials

Trusted by security teams across the GCC

6 weeks → 3 daysSOC 2 audit prep

The firewall coverage is unlike anything else on the market — it actually understands PCI DSS Requirement 1. Our auditor was impressed.

MR
Maria R.
CISO · Fintech startup
0 incidentssince onboarding

The drift alerts are a game changer. We caught a developer accidentally opening port 22 to the internet at 3am — before anyone else did.

JK
James K.
Head of IT · SaaS company
1 sprint savedper audit cycle

Every control had timestamped evidence automatically. The PDF package saved our team an entire sprint. Our auditors asked what tool we used.

SA
Sara A.
VP Engineering · Series B
FAQ

Common questions

Does the client need to install anything?
For cloud systems (AWS, Okta, Azure) — no. You grant read-only API access via a guided 10-minute setup. For on-prem firewalls (Cisco ASA, Palo Alto), we provide a lightweight Docker-based agent that makes outbound-only connections — no inbound ports required.
Is my infrastructure data safe?
All credentials are stored in AWS Secrets Manager with AES-256 encryption, namespaced per organisation. We hold read-only permissions only — it is technically impossible for NetGuard to modify anything in your infrastructure. All data is encrypted at rest and in transit (TLS 1.3).
How is this different from Vanta or Drata?
Vanta and Drata focus on SaaS integrations (GitHub, Google Workspace, HR tools). They handle firewall and network compliance poorly. NetGuard is built specifically for network and infrastructure-heavy environments — we go deep on PCI DSS firewall requirements, network segmentation, and on-prem systems that generic tools skip entirely.
How long does onboarding take?
Most customers connect their first integrations and run their first scan within 30 minutes of getting started. Your first full compliance report can be ready the same day. There is no professional services engagement required.
Can I add custom compliance controls?
Yes, on the Enterprise plan. You can define custom controls in YAML, map them to any data source, and they appear alongside the standard framework controls in your dashboard and reports.
What if a scan fails or a connector goes stale?
You'll receive an email and Slack alert immediately. Each data source shows a last collected timestamp in the dashboard. Failed collections are retried automatically 3 times with exponential backoff before alerting you.
What's the difference between the C-Level, Summary, and Technical reports?
They all come from the same scan — zero extra work. The C-Level report is a plain-English brief written for executives: no acronyms, no control IDs, just business risk and what leadership needs to authorise. The Summary report gives managers a compliance score, category-by-category breakdown, and the top findings. The Technical report is for your IT team — every control with the raw evidence collected and numbered step-by-step instructions on exactly how to fix each failing issue.
What is the Cross-Framework Map?
It's a single matrix that shows how every security check maps across all eight frameworks (SOC 2, PCI DSS, ISO 27001, NIST CSF, SACS-002, NCA ECC, SAMA CSF, CBB Cybersecurity Framework) at the same time. Instead of running separate audits, you can see at a glance which checks satisfy multiple frameworks simultaneously — and where you have gaps in specific frameworks. Available as an interactive view in the dashboard and as a PDF export.
Why is NetGuard cheaper than Vanta or Drata?
We don’t charge per seat or per integration. You pay per organisation, and the price reflects the size of your asset footprint — not how many people are on your team. We’re also not trying to be a general-purpose GRC tool. NetGuard does one thing exceptionally well: compliance automation for infrastructure-heavy environments.
Do you support GCC compliance frameworks — SACS-002, NCA ECC, SAMA CSF, and CBB?
Yes. NetGuard includes full coverage for all four regional frameworks. SACS-002 (Saudi Aramco Third Party Cybersecurity Standard) is required for any company supplying services to Saudi Aramco. NCA ECC 2-2024 is mandatory for Saudi government entities and Critical National Infrastructure organisations. SAMA CSF is required for Saudi banks, insurance companies, and all SAMA-regulated financial institutions. The CBB Cybersecurity Framework is mandatory for all Central Bank of Bahrain-licensed financial institutions — including banks, fintech, insurance, payment providers, and crypto-asset firms — with a strict 2-hour incident notification requirement. Each framework maps to your existing integrations — AWS, Okta, GitHub, Meraki — so automated checks run immediately without extra configuration.
Where is NetGuard available?
NetGuard is available globally with a specific focus on the MENA region. We support GCC-specific frameworks including SACS-002, NCA ECC, SAMA CSF, and CBB CSF — frameworks no other compliance platform supports.
Is NetGuard built for MENA companies?
Yes. NetGuard is purpose-built for MENA’s regulatory environment. We support all 4 major GCC compliance frameworks alongside global standards like SOC 2, ISO 27001, and PCI DSS — so you can achieve regional compliance and global certifications from one platform.
Do you support the CBB Cybersecurity Framework?
Yes. NetGuard includes the full CBB Cybersecurity Framework with 29 controls across the five NIST-aligned functions (Identify, Protect, Detect, Respond, Recover) plus five CBB-specific specialised controls covering cloud outsourcing (OM-2 approval), Privileged Access Management, CBB CERT registration, cyber insurance, and crypto-asset security. The framework includes Bahrain-specific context — including the 2-hour CBB incident notification SLA and OM-2 cloud outsourcing approval requirements — with automated checks for controls that map to your AWS, Okta, and GitHub integrations.

Start your free trial

Connect your first integration in 10 minutes. No credit card required. Your first compliance report in under an hour.

Request a Proposal
14-day free trial · No credit card · Cancel anytime