Saudi Authority for Internal Auditors
GRC Executive Programme

The Saudi Authority for Internal Auditors (formerly the Saudi Institute of Internal Auditors) is the Kingdom’s leading professional body dedicated to elevating the standards of internal auditing across public and private sector organisations. Established in 2011 by the Council of Ministers and supervised by the General Court of Audit, the Authority promotes ethical practices, international audit standards, and professional excellence in governance, risk management, and compliance (GRC).

Recognising the Møller Institute’s expertise in leadership development and executive education, the Authority partnered with us to co-design a tailored programme that would empower senior auditors with the tools, strategies, and insights needed to navigate an increasingly complex GRC landscape.

The inaugural GRC Executive Programme welcomed a cohort of 45 senior internal audit professionals, each with a minimum of eight years of experience in internal control roles. Participants were nominated by the Saudi Authority for their potential to lead change, influence strategy, and advance audit effectiveness within their organisations.

The GRC Executive Programme was designed as a blended learning experience, combining six online sessions with a five-day residential programme in Cambridge.

The design process was consultative and highly collaborative, aligning the curriculum with the Authority’s strategic objectives and international best practices. Key themes explored included:

• Governance frameworks and ethical leadership
• Strategic risk management and audit alignment
• Cross-border regulatory compliance
• Cybersecurity and digital risk
• ESG reporting and sustainability integration
• Organisational leadership and collaboration in GRC contexts

The online element, delivered via the Møller Online platform, featured live sessions, interactive quizzes, case discussions, and forum engagement to foster connections between peer learners and introduce the key topics that would be explored in greater depth in the residential component that followed.

The week-long residential phase, held at the Møller Institute in Cambridge, provided participants with opportunities for deeper learning, collaborative group work, and structured reflection. Sessions were led by subject matter experts and facilitators with deep expertise in audit, governance, and risk.

The programme concluded with participant presentations, where groups showcased their strategic GRC frameworks and received feedback from faculty and peers. The final evening

featured a formal certificate presentation at Madingley Hall, University of Cambridge, celebrating participants’ achievements and commitment to advancing internal auditing excellence in the Kingdom of Saudi Arabia.

Programme Faculty

The programme was led by Møller associate, David Sheldon, an experienced facilitator and coach, who ensured continuity across the learning journey. Key contributors included:

• Dr Victoria Hurth – A specialist in sustainability and organisational purpose, Victoria explored how internal audit can support long-term value creation, ethical leadership, and sustainable business transformation.
• Andrew Williams – A former Chief Compliance Officer, Andrew brought deep expertise in regulatory risk and led sessions on compliance in shifting legal environments, drawing on his experience in high-profile global investigations.
• Danny Lopez – a leader in cybersecurity and digital risk, who delivered sessions on the integration of technology into audit and compliance frameworks.
• Paul Browne – who brought deep insight into governance and ethical leadership, drawing on his experience in boardroom dynamics and public service.