SAMA CSF
SAMA Cyber Security Framework — controls, assessments, audits.
A practical guide to audit management software for Saudi internal audit functions — IIA-aligned methodology, risk-based planning, IPPF and KPIs in 2026.
A practitioner's guide to business continuity management in Saudi Arabia — aligning BCM programme design to the SAMA BCM Framework and ISO 22301 in 2026.
A practical playbook for compliance audit in Saudi Arabia — scoping, evidence, fieldwork and reporting against SAMA CSF, NCA ECC, PDPL and ISO 27001 in 2026.
A 2026 buyer's guide to GRC software for Saudi Arabia — what to look for in SAMA, NCA, PDPL and ISO 27001 coverage, data residency and bilingual support.
A practical buyer's guide to risk management software for Saudi enterprises — methodology, integration, KRIs and alignment with SAMA CSF, NCA ECC and ISO 27005.
How to build a cyber risk register for Saudi Arabia aligned to SAMA CSF and NCA ECC — taxonomy, scoring, control linkage, KRIs and inspector-ready evidence.
GRC software vs spreadsheets for Saudi compliance teams — audit prep time, evidence integrity, SAMA and NCA inspection readiness and the real total cost.
A free IIA-aligned internal audit universe template for Saudi internal audit functions — auditable units, risk rating, planning columns, downloadable Excel.
A step-by-step ISO 27001:2022 certification roadmap for Saudi organisations — scope, Annex A controls, Stage 1 and Stage 2 audits, and SAMA CSF alignment.
On-premise GRC software for Saudi Arabia — when sovereignty matters, deployment options, PDPL data residency, NCA CCC and SAMA outsourcing implications.
How to run a risk-based internal audit program in Saudi Arabia — IIA-aligned audit universe, risk rating, planning, fieldwork and committee reporting.
A free risk register template for Saudi banks aligned to SAMA CSF — taxonomy, inherent and residual scoring, control linkage and KRI tracking, Excel download.
A free SAMA CSF compliance checklist for 2026 — every domain, sub-control and maturity expectation Saudi banks need to evidence, with downloadable template.
A practitioner's guide to SAMA CSF compliance in 2026 — scope, maturity model, governance, third-party depth, inspection expectations for Saudi banks.
How SAMA CSF maps to ISO 27001 Annex A — what overlaps, what's Saudi-specific, and how to run one connected ISMS that satisfies both frameworks at once.
A factual comparison of SAMA CSF and NCA ECC — issuer, scope, structure, control counts, assessment methodology and how Saudi organisations manage both.