The government of Saudi Arabia has established the National Cybersecurity Authority (NCA) to be the government entity in charge of cybersecurity in the country, and it serves as the national authority on its affairs. The NCA was established in 2017 by a Royal Order that links it directly to HM the King. The NCA has both regulatory and operational functions related to cybersecurity and it works closely with public and private entities to improve the cybersecurity posture of the country in order to safeguard its vital interests, national security, critical infrastructures, high-priority sectors, and government services and activities in alignment with Vision 2030.
According to the official charter of the NCA, Cybersecurity is defined as "the protection of information technology systems and networks as well as systems and components of operating technologies, including hardware and software, together with services provided thereby and data included therein, against unlawful hacking, obstruction, modification, access, use or exploitation". The NCA has a comprehensive national level mandate that includes, but not limited to, drafting the national strategy for cybersecurity and overseeing its implementation; cybersecurity frameworks, controls, and compliance; building and operating cybersecurity operation centers; developing human capabilities in cybersecurity; raising awareness on cybersecurity; stimulating growth of the cybersecurity sector and encouraging innovation and investment therein; and establishing ties with similar agencies abroad and private entities for the mutual exchange of knowledge and expertise in cybersecurity.