Managed.sa
Knowledge base

Resources

Official documentation, guides, and reference materials for Saudi Aramco CCC, SABIC CyberTrust, and CST cybersecurity compliance programs.

CCC ProgramJanuary 20268 min read

Authorized Audit Firm Qualifications

Requirements, qualifications, and expectations for Audit Firms to become authorized to issue a Cybersecurity Compliance Certificate (CCC) under Saudi Aramco's SACS-002 program.

Read article
CCC ProgramJanuary 202610 min read

SACS-002 Third Party Cybersecurity Controls Overview

A comprehensive overview of the 200 cybersecurity controls in Saudi Aramco's SACS-002 standard, organized by general and specific requirements across all security domains.

Read article
SABIC CyberTrustFebruary 20267 min read

SABIC CyberTrust Supplier Classifications Guide

Understanding SABIC's 7 supplier classification categories under the CyberTrust Standard v1.0, including control requirements, scope, and assessment process for each category.

Read article
CST CertificationFebruary 20266 min read

CST Cybersecurity & Data Governance Supplier Standard

An overview of the Communications, Space & Technology Commission's cybersecurity requirements for telecom suppliers, including the dual-level audit methodology and compliance process.

Read article
GuideMarch 202612 min read

How to Prepare for a Cybersecurity Compliance Audit

A practical step-by-step guide for organizations preparing for their first CCC, SABIC CyberTrust, or CST cybersecurity compliance audit, covering evidence preparation, common gaps, and best practices.

Read article
CCC ProgramMarch 20265 min read

CCC Certificate Types, Validity & Renewal

Everything you need to know about CCC and CCC+ certificate types, validity periods, renewal requirements, and what happens when your certificate expires.

Read article
Browse services
    Resources — Cybersecurity compliance knowledge base | Managed.sa