Risk Scoring
Inherent vs residual risk scoring methodologies.
A practitioner's guide to the SAMA Counter-Fraud Framework in 2026 — scope, the four domains, the maturity model, third-party due diligence and fraud reporting for Saudi banks.
How Saudi CIOs meet the SAMA IT Governance Framework in 2026 — the four domains, IT risk assessment, the IT Steering Committee, maturity model and self-assessment.
How Saudi organisations run third-party and vendor risk assessment in 2026 — tiering, due diligence, right-to-audit clauses and monitoring under SAMA, NCA ECC and PDPL.
A practical buyer's guide to risk management software for Saudi enterprises — methodology, integration, KRIs and alignment with SAMA CSF, NCA ECC and ISO 27005.
How to build a cyber risk register for Saudi Arabia aligned to SAMA CSF and NCA ECC — taxonomy, scoring, control linkage, KRIs and inspector-ready evidence.
A free IIA-aligned internal audit universe template for Saudi internal audit functions — auditable units, risk rating, planning columns, downloadable Excel.
How to run a risk-based internal audit program in Saudi Arabia — IIA-aligned audit universe, risk rating, planning, fieldwork and committee reporting.
A free risk register template for Saudi banks aligned to SAMA CSF — taxonomy, inherent and residual scoring, control linkage and KRI tracking, Excel download.