Deloitte becomes Certifying Body for Aramco’s Third Party Cybersecurity Compliance Certificate Program

22 June, 2021 - Deloitte has been appointed by Aramco as an authorized professional services firm to conduct assessments and issue Cybersecurity Compliance Certificates (CCC) against the SACS-002 Third Party Cybersecurity Standard.

Aramco introduced the Cybersecurity Compliance Certificate Program for their suppliers in April 2020. The CCC program was established to ensure all third parties working with Aramco are in compliance with the cybersecurity requirements in the Aramco Third Party Cybersecurity Standard (SACS-002).

All third parties engaging with Aramco must obtain a cybersecurity compliance certificate from an authorized firm to confirm their adherence to the cybersecurity requirements, as mandated in the Third Party Cybersecurity Standard (SACS-002). Deloitte can now provide the required verification services.

“Deloitte is honored to be one of Aramco’s certifying bodies, working closely with Aramco in the program implementation, which allows for efficiencies and the highest quality standards to be sought. The cybersecurity market has become fragmented and complex, and both enterprises and vendors require third-party validation. Deloitte’s leading position on cybersecurity is the result of speed and scale, providing trust and resilience in the products and services our clients engage.” said Salam Awawdeh, Global Lead Partner for Aramco at Deloitte. “Cybersecurity is now more important and critical than ever to the success of corporations and being selected as a certifying body for Aramco is a testament of Deloitte’s expertise in the area”. 

Chris Bredenhann, Risk Advisory Partner, and Khaled Al Sagga, Consulting Partner, represented Deloitte at the formal signing ceremony for the appointment on April 6, 2021, at the Aramco campus in Dhahran. 

About Deloitte & Touche (M.E.) LLP:

Deloitte & Touche (M.E.) LLP (DME) is the affiliate for the territories of the Middle East and Cyprus of Deloitte NSE LLP (“NSE”), a UK limited liability partnership and member firm of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee (“DTTL”).

DME is a leader in professional services with uninterrupted presence in the Middle East since 1926 with 26 offices in 14 countries and around 5,000 partners, directors and staff. DME’s presence in the Middle East and Cyprus is established through its affiliated independent legal entities, which are licensed to operate and to provide services under the applicable laws and regulations of the relevant country. DME’s affiliates and related entities cannot oblige each other and/or DME, and when providing services, each affiliate and related entity engages directly and independently with its own clients and shall only be liable for its own acts or omissions and not those of any other affiliate.

About Deloitte:

Deloitte refers to one or more of DTTL, its global network of member firms, and their related entities. DTTL (also referred to as “Deloitte Global”) and each of its member firms are legally separate and independent entities, which cannot obligate or bind each other in respect of third parties. DTTL and each DTTL member firm and related entity is liable only for its own acts and omissions, and not those of each other. DTTL, NSE and DME do not provide services to clients. Please see www.deloitte.com/about to learn more.

Deloitte is a leading global provider of audit and assurance, consulting, financial advisory, risk advisory, tax and related services. Our network of member firms in more than 150 counties and territories, serves four out of five Fortune Global 500® companies. Learn how Deloitte’s approximately 300,000 people make an impact that matters at www.deloitte.com.