CompTIA
Foundational cybersecurity certification covering core security concepts and operations.
Beginnerapprox. $392≈ approx. 1,470 SAR
Field 01
Cybersecurity
Cybersecurity — SOC · GRC · IR · Cloud Security · PenTesting · AppSec
38 certifications
About Cybersecurity
Cybersecurity is one of Saudi Arabia's most in-demand fields, driven by Vision 2030 and NCA requirements. It covers SOC, threat analysis, GRC, cloud security, penetration testing, and AppSec. Certifications are ordered from foundational (Security+) to leadership (CISSP, CISM).
Beginner
3 certifications
ISC2
Free entry-level cybersecurity certification for newcomers.
Beginner
Cisco
Fundamentals of Security Operations Center (SOC) work.
Beginnerapprox. $300≈ approx. 1,125 SAR
Intermediate
14 certifications
National Cybersecurity Authority (NCA)
National framework for classifying and qualifying cybersecurity professionals in Saudi Arabia by job track.
IntermediateFree
National Cybersecurity Authority (NCA)
Mandatory baseline cybersecurity controls framework for Saudi national entities.
IntermediateFree
National Cybersecurity Authority (NCA)
Mandatory NCA controls for cloud service adoption in national entities.
Intermediate
CompTIA
Threat analysis, SOC operations, and incident response.
Intermediateapprox. $404≈ approx. 1,515 SAR
CompTIA
Professional penetration testing and vulnerability assessment.
Intermediateapprox. $404≈ approx. 1,515 SAR
ISC2
Operational certification for system security administrators and SOC analysts.
Intermediateapprox. $249≈ approx. 934 SAR
EC-Council
Fundamentals of ethical hacking and penetration testing.
Intermediateapprox. $1,199≈ approx. 4,496 SAR
EC-Council
Certified digital forensics investigator for incident response (IR) and investigation.
Intermediateapprox. $1,199≈ approx. 4,496 SAR
EC-Council
Incident response specialist for handling cyber attacks.
Intermediate
EC-Council
Cyber threat intelligence analyst.
Intermediate
GIAC / SANS
Security essentials for hands-on security practitioners.
Intermediateapprox. $999–$2,499≈ approx. 3,746–9,371 SAR
Microsoft
Security operations analysis using Microsoft Sentinel and Defender.
Intermediate
Microsoft
Identity and access management across Microsoft Entra environments.
Intermediate
Microsoft
Data governance, protection, and compliance in Microsoft Purview.
Intermediate
Advanced
21 certifications
National Cybersecurity Authority (NCA)
Controls for protecting critical systems within national entities per NCA requirements.
Advanced
CompTIA
Advanced cert for security engineers focused on enterprise security architecture.
Advanced
ISC2
Globally recognized certification for security engineers and leaders designing and managing security programs.
Advancedapprox. $749≈ approx. 2,809 SAR
ISC2
Cloud security professional designing and protecting cloud environments.
Advancedapprox. $599≈ approx. 2,246 SAR
ISACA
Certified Information Systems Auditor — global benchmark for IT audit and control.
Advancedapprox. $575–$760≈ approx. 2,156–2,850 SAR
ISACA
Certified Information Security Manager focused on governance and risk management (GRC).
Advancedapprox. $575–$760≈ approx. 2,156–2,850 SAR
ISACA
Specialist in risk and information systems control.
Advancedapprox. $575–$760≈ approx. 2,156–2,850 SAR
ISACA
Professional cert in data privacy engineering aligned with Saudi PDPL.
Advanced
GIAC / SANS
Cyber incident handling, attack detection, and response.
Advancedapprox. $999–$2,499≈ approx. 3,746–9,371 SAR
GIAC / SANS
Advanced penetration testing with a recognized methodology.
Advancedapprox. $999–$2,499≈ approx. 3,746–9,371 SAR
GIAC / SANS
Web application penetration testing (AppSec).
Advancedapprox. $999–$2,499≈ approx. 3,746–9,371 SAR
GIAC / SANS
Intrusion analyst for SOC network detection.
Advanced
OffSec
Highly regarded hands-on certification in offensive penetration testing.
Advancedapprox. $1,649≈ approx. 6,184 SAR
OffSec
Expert web application exploitation — focused on offensive AppSec.
Advancedapprox. $1,749≈ approx. 6,559 SAR
OffSec
Advanced penetration testing with evasion of modern defenses.
Advanced
Amazon Web Services
Cloud security specialization on AWS.
Advanced
Fortinet
Design and operate enterprise FortiGate firewall solutions.
Advanced
Palo Alto Networks
Palo Alto Networks Certified Network Security Engineer.
Advanced
PECB
Implement an ISMS aligned with ISO/IEC 27001.
Advanced
Microsoft
Design end-to-end Microsoft cybersecurity strategy (Zero Trust, identity, data protection).
Advanced
PECB / BSI
Lead auditor for ISO/IEC 27001 information security management systems.
Advanced
Suggested paths in this field
Starter path (no experience)
For newcomers — strong foundation that leads to a first job.
Build my custom path →Skill-building path (1–3 yrs)
For those with some experience strengthening technical skills.
Build my custom path →Leadership path (5+ yrs)
For seniors targeting leadership and advisory roles.
Build my custom path →FAQ — Cybersecurity
What's the best entry-level cybersecurity certification in Saudi Arabia?+
CompTIA Security+ is the most widely recognized starting point, ideally paired with the Saudi SCyWF framework to align with local market needs.
Is CISSP required for government cybersecurity roles?+
Many Saudi government agencies and MSSPs require CISSP or CISM for leadership roles, while Security+/CySA+ are accepted for operational positions.
How much do cybersecurity certifications cost, and does Hadaf support them?+
Prices range from ~1,500 SAR (Security+) to ~3,000 SAR (CISSP). Some are supported by the Hadaf (هدف) program — look for the Hadaf badge on each certification.
What's the difference between CISA, CISM, and CRISC?+
CISA targets audit, CISM management and governance, and CRISC risk. All three are from ISACA and in demand across banking, telecom, and government.