Saudi Arabia: Consultation closed on Framework for Licensing Cybersecurity Compliance Assessment Services

On 20 November 2022, the public consultation on the “Regulatory Framework for Licensing Cybersecurity Compliance Assessment Services” (Framework) closed. The Framework was published for consultation by the Saudi Arabian National Cybersecurity Authority (NCA) on 19 October 2022. The Framework introduces standards and a licensing system for providers of cybersecurity compliance assessment services in order to ensure the providers comply with cybersecurity regulations. Furthermore, the Framework establishes the requirements for providers to qualify for a licence and introduces four types of licences for the government, private sector and non-profit organizations, cybersecurity service providers and compliance assessors.