Cicpa: Tasreeh 7096 Upd

As the financial sector in Saudi Arabia undergoes rapid digitalization, the threat landscape has evolved, necessitating a robust regulatory framework. Historically, Saudi banks and insurance companies adhered to the introduced in 2017. However, recent developments—including the introduction of the Essential Cybersecurity Controls (ECC) and updated Cloud Computing regulations—required a consolidated update.

The schedule must be submitted electronically to CICPA’s International Affairs Department within 15 days of signing the audit opinion. Penalties for non-filing range from ¥20,000 to ¥100,000 per engagement. cicpa tasreeh 7096 upd