Deloitte becomes certifying body for Aramco third-party cybersecurity

Aramco has named Deloitte as an approved professional services company to perform assessments and issue Cybersecurity Compliance Certificates (CCC) in accordance with the SACS-002 Third Party Cybersecurity Standard.

In April 2020, Aramco launched the Cybersecurity Compliance Certificate Program for its vendors. The CCC program was created to guarantee that all third parties working with Aramco adhere to the Aramco Third Party Cybersecurity Standard’s cybersecurity standards (SACS-002).

All third parties working with Aramco must get a cybersecurity compliance certificate from an approved company to demonstrate that they are following the Third Party Cybersecurity Standard’s cybersecurity criteria (SACS-002). Deloitte now has the ability to perform the necessary verification services.

“Deloitte is honored to be one of Aramco’s certifying bodies, working closely with Aramco in the program implementation, which allows for efficiencies and the highest quality standards to be sought. The cybersecurity market has become fragmented and complex, and both enterprises and vendors require third-party validation. Deloitte’s leading position on cybersecurity is the result of speed and scale, providing trust and resilience in the products and services our clients engage.” said Salam Awawdeh, Global Lead Partner for Aramco at Deloitte. “Cybersecurity is now more important and critical than ever to the success of corporations and being selected as a certifying body for Aramco is a testament of Deloitte’s expertise in the area”.