Hisham is an accomplished AI engineer at Kuality AI, a leading company that provides cutting-edge AI solutions to various clients, including the government sector in the UAE.
In a recent interview, Hisham recounts his journey through the ever-evolving world of cybersecurity and government regulations in the United Arab Emirates (UAE) and he particularly discussed some of the specific regulations and policies that companies need to be aware of when working with the government sector.
He started his career in 2015 at a digital agency called CloudAppers, where he first experienced working on government-affiliated projects. At that time, cybersecurity was not a primary concern, and encryption was not standard practice.
However, things changed significantly as Hisham continued to work in the field. In 2020, he returned to Cloud Press, collaborating with ENOC, an oil and gas company in the UAE. He witnessed a dramatic shift in cybersecurity concepts, and the complexity of security requirements increased, along with the introduction of new laws that intensified data scrutiny.
Dealing with government regulations and compliance has become more challenging over time. Previously, developers had easy access to data and could link it to their products without much hassle, but recent regulations have complicated the process. Hisham mentions mandatory penetration testing for applications and the introduction of an access regulation system, Active Directory, as examples of these new rules. Staying up-to-date with the latest regulations and ensuring products’ compliance can be time-consuming and complex, but it is crucial to maintain security and protect users’ data.
AT Kuality AI, The company has implemented various measures to prioritize compliance with government regulations while meeting its customers’ needs. such as designing its Third Eye product system to operate within the UAE, with all data stored on the customer’s servers. This approach ensures compliance with UAE legislation and eliminates the risk of data being stored outside the country. Kuality AI also works closely with customers to understand their needs and requirements, ensuring that their products comply with regulations.
While Kuality AI has not yet faced any compliance challenges when working with the UAE government sector, the company is committed to adhering to all necessary government regulations and standards. Hisham emphasizes their dedication to staying informed about the latest changes in regulations and laws. Should Kuality AI work with the government sector in the future, they will approach it with the same commitment to compliance and work closely with their partners to meet all regulatory requirements.
According to Hisham, it’s crucial to be aware of the specific regulations and policies that apply to each organization when working with the government sector. He emphasized the importance of integrating with the active directory and ensuring that any roles within the system are respected and agreed upon between the tech team within the government sector and the vendor. Hisham also noted that it’s critical to stay up-to-date with the specific regulations and policies of each government organization and work closely with their tech teams to ensure compliance.
He gave an example of when they proposed installing a weather station for ENOC, the proposal was rejected because they don’t allow using IoT devices. “It’s important to work closely with their tech teams to ensure compliance. By doing so, we can ensure that our products meet the necessary regulatory requirements while also meeting the needs of our government sector customers,” Hisham added.
When asked about how Kuality AI stays up-to-date with changes in regulations and compliance requirements, Hisham explained that they employ various strategies, including following relevant news sources, engaging with regulatory bodies, attending industry events, conducting regular research, and conducting regular internal audits. He emphasized that compliance is taken seriously at Kuality AI and they work hard to stay up-to-date with the latest changes in regulations and compliance requirements. By doing so, we can ensure that our products meet the necessary standards,” Hisham said.
Balancing customer needs with government regulations is challenging but Kuality AI takes a collaborative approach. “We work closely with our clients to understand their needs, educate them about compliance and alert them to risks. We negotiate with them and if needed, we adjust our solutions to meet regulations while serving their needs,” Hisham explained.
Finally, for companies looking to work with the government sector, Hisham advised: “Hold meetings with their technical teams, obtain agreement on ideas, conduct testing and consider data encryption needs. Communicate openly, understand their requirements and adjust your solutions to comply with regulations. This will allow you to meet their needs while avoiding issues.”
In conclusion, Hisham emphasized that compliance should be the topmost priority for any tech company looking to work with the government sector. By prioritizing open communication with government tech teams, taking a collaborative approach, adjusting solutions to meet the specific requirements of each organization, staying up-to-date with the latest regulations and compliance requirements, tech companies can build innovative and effective products for the government sector, and ensure that their products meet the necessary regulatory standards while also satisfying the unique needs and demands of their clients. Overall, the key is balancing customer needs with compliance through collaboration and education.