Third-Party Cybersecurity Standard (CCC) SACS-002 is derived primarily from the National Institute of Standards and Technology Cybersecurity Framework (NIST CSF). Consequently, if your organization already implements NIST CSF, most of the SACS-002 (CCC) requirements will already be met. Saudi Aramco issued SACS-002 Third-Party Cybersecurity Standard (CCC) in May 2020 to safeguard Saudi Aramco from cyber threats and strengthen Third Parties' security posture.
Saudi Aramco has developed a third-party cybersecurity standard, which lays out the minimum requirements that companies working with Saudi Aramco are required to meet in terms of information security. With Infratech's Compliant solution, you will be able to easily stay in compliance with the standards of SACS and protect your business against the cyber threats that are on the rise.
Implementing and auditing Saudi Aramco Cybersecurity Standard has the following benefits
Infratech helps you compliant with the Saudi Aramco Cybersecurity Standard in three phases
Establish the gaps in compliance with Saudi Aramco Cybersecurity Standard that need to be closed in order to achieve compliance with the standard.
Comply with SACS-002, provide any required policies and procedures, and implement a centralized policy administration system.
Assist auditors with evidence collection, including screenshots, videos, emails, etc., and prepare an evidence submission report.