Talk With an Expert

Saudi Cybersecurity Workforce Framework (SCyWF)

Find the Right Path Using the NCA

The NCA – Saudi Cybersecurity Workforce Framework (SCyWF) is a practical tool to support the identification and articulation of tasks, competences, skills and knowledge associated with the roles of Saudi Arabia cybersecurity professionals. The SCyWF provides profiles of 12 typical cybersecurity professional roles. The main purpose of the SCyWF is to create a common understanding between individuals, employers and providers of learning programmes across the region.

For more information on this framework and how it can assist you in finding the right cybersecurity training for you or your organisation, speak to a SANS representative.

Saudi Arabian man working at a computer

SCyWF Profiles

The SCyWF outlines all cybersecurity roles across five work categories and a total of 12 specialty areas across those categories. We've aligned our expert training with this framework to ensure you get the most relevant, targeted learning. Our courses are specifically mapped to these areas, offering professionals practical skills that address the evolving challenges of today’s security landscape. Whether you're advancing your career or strengthening your team, our comprehensive training equips you with the knowledge and expertise to succeed in the industry.

Cybersecurity Architecture, Research, and Development

Conducts cybersecurity design, architecture, research and development activities.

Leadership and Workforce Development

Leads cybersecurity teams and work. Develops cybersecurity human capital.

Governance, Risk, Compliance, and Laws

Develops organisational cybersecurity policies. Governs cybersecurity structures and processes, manages cyber risks and assures compliance with the organization’s cybersecurity, risk management and related legal requirements.

Protection and Defense

Identifies, analyses, monitors, mitigates and manages threats and vulnerabilities to IT systems and networks. Uses defensive measures and multi-source information to report events and respond to incident

Industrial Control Systems and Operational Technologies

Conducts cybersecurity tasks for Industrial Control Systems and Operational Technologies (ICS/OT).