About the Company

• Ma’aden is Saudi Arabia’s multi‑commodity mining champion (gold, phosphate, aluminum, base metals) headquartered in Riyadh and backed by PIF. (PIF profile; World Economic Forum overview) PIF WEF
• Accelerating growth under Vision 2030: plan to double gold by 2030 and build a rare‑earths chain; in 2025 Ma’aden became 100% owner of MAC/MBAC (ex‑Alcoa JVs). FT Ma’aden news
• Latest (Jan 2026): announced +7.8Moz gold resource additions; advancing MP Materials rare‑earths JV; international arm Manara Minerals invested in Vale Base Metals. Ma’aden news FT PIF/Vale

About the Lead

• Hassan AlMusajjen at Ma’aden; LinkedIn on file. (Confirm title at start.) LinkedIn
• Owns the success of this evaluation and coordination with internal stakeholders.
• Owns outcomes around reducing incident impact and audit readiness within his remit.
• Owns alignment of vendor SLAs/budgets with operational and compliance goals.

What Keeps Them Up at Night

• Staying aligned with evolving KSA controls (updated NCA ECC 2‑2024, OTCC, plus CCC/DCC) and being inspection‑ready. NCA ECC NCA OTCC NCA CCC NCA DCC
• OT/ICS ransomware and supply‑chain risk across mines, smelters, and remote sites needing 24/7 visibility. (Critical infrastructure targeting and third‑party attack growth.) IBM X‑Force 2025 FT supply‑chain
• PDPL enforcement implications for workforce/contractor data and incident reporting. PwC PDPL guide

How to Position SHELT

• 24/7 SOC – OT‑aware monitoring and incident triage across dispersed sites.
• XDR – help reduce dwell time by correlating endpoint/server/industrial telemetry.
• GRC – map controls to NCA ECC/OTCC/CCC/DCC and produce audit‑ready evidence packs. NCA ECC
• Threat Intelligence (REVA – Brand & VIP) – monitor impersonations/leaked creds; support coordinated takedowns to reduce fraud exposure.

Discovery Questions

• Which NCA control sets are in scope for 2026 (ECC 2‑2024, OTCC, CCC/DCC), and do you have inspection dates or internal audits scheduled?
• How are IT and OT monitored today (tooling, runbooks, on‑call model) and where are the after‑hours coverage gaps?
• Where are the top 2 risk hotspots: third‑party access, identity/privileged misuse, or exposed APIs?

Ice Breaker: "Caught Bob Wilt’s FMF talk on Jan 21, 2026 about tripling phosphate and doubling aluminum—how is security scaling alongside those plans?"