The Saudi National Cybersecurity Authority announced a new program offering substantial financial rewards for citizens who report cybercrimes and security violations. Rewards will reach up to SR50,000 or one percent of collected fines.
The initiative aims to strengthen cybersecurity across the kingdom by encouraging public participation in identifying and reporting illegal activities. A dedicated committee of three authority staff members has been established to review reports and determine whistleblower eligibility and calculate reward amounts according to official regulations.
Types of Violations That Qualify for Rewards
Citizens can report several categories of cybersecurity violations to receive compensation. These include conducting cybersecurity operations without a proper license or in violation of license terms and failure to comply with cybersecurity policies, governance mechanisms, frameworks, standards, controls and guidelines.
Additional reportable violations include refusing to provide Cybersecurity Authority with requested information while carrying out its duties, providing misleading information to authorities, and possessing, selling, importing or exporting cybersecurity devices or services that do not meet required standards or lack necessary licenses.
Obstructing or preventing cybersecurity inspectors from performing their official duties also qualifies as a reportable violation subject to rewards.
Important Conditions for Receiving Rewards
The authority released detailed conditions for whistleblower eligibility through its official survey platform. Rewards will only be granted after the reported violation is officially proven, either through a court ruling or after the statutory period for appeals expires.
The submitted report must have played a decisive role in proving the violation. Reports that merely provide information without directly contributing to the proof will not qualify for compensation.
Whistleblower Eligibility Requirements
Specific categories of people cannot receive rewards under this program. Employees of the National Cybersecurity Authority, along with their spouses, in-laws and close relatives are ineligible for compensation.
The violation must not have been previously reported or rewarded by the authority. If reporting such violations is part of person’s official job duties as a government employee, they cannot receive additional compensation.
Most importantly, whistleblowers must commit to maintaining complete confidentiality about their report. Sharing details about the report with others disqualifies the person from receiving any reward.
How the Review Process Works
The authority established a three-member committee specifically tasked with examining referred reports. This committee determines whether whistleblowers meet eligibility requirements, verifies the validity of reported violations, and decides the precise reward amount based on individual circumstances.
All decisions follow established regulations and can be reviewed through proper legal channels, ensuring transparency and fairness in the reward determination process.
Why This Program Matters
The new whistleblower rewards program reflects Saudi Arabia’s commitment to strengthening national cybersecurity defenses. By incentivizing public reporting of violations, the authority creates additional layers of oversight and enforcement against cyber threats and illegal activities.
The program demonstrates the kingdom’s proactive approach to protecting its digital infrastructure and maintaining compliance with cybersecurity standards across all sectors.
Stay updated
Follow us for latest Guides:
✅ WhatsApp Channel
☑️ Telegram Channel
