Qualifying to work with Aramco
Enhanced compliance with cybersecurity requirements
Information protection
Improving reliability and technical readiness
What are Aramco Cybersecurity Certificates?
Who do you provide the service to?
Companies wishing to register as a supplier
IT and digital solutions providers
Contracting companies
Facilities that wish to improve their readiness
Services
A shared understanding of the technical and organizational aspects
Focus on realistic readiness
Reducing the workload on the team
Working mechanism
Understanding the facility's situation and Aramco's requirements
Review the type of services you provide or plan to provide to Aramco, and the scope of integration with or interaction with its systems and information.
Analysis of the gap in cybersecurity controls
Compare the current state of controls and procedures (policies, systems, permissions, backups, incident response, etc.) with CCC or CCC+ requirements.
Recommendations for improvement and required actions
Providing a prioritized list of technical and organizational measures that need to be implemented or enhanced before applying.
Evidence and documentation preparation
Organizing policies, records and proof of implementation that will be used to demonstrate compliance during the assessment.
Application support and assessment coordination
Assisting you in completing the forms, submitting evidence and responding to questions raised by the assessing party.
Post-assessment follow-up
Helping your team address any nonconformities or observations identified in the assessment report until the certificate is granted.
