ISO 27001
أيزو 27001
Also known as: ISO/IEC 27001
ISO/IEC 27001 is the international standard for information security management systems (ISMS). The 2022 revision specifies 93 controls across organizational, people, physical, and technological themes. Certification by an accredited body involves a Stage 1 documentation review and Stage 2 on-site audit, with annual surveillance audits. ISO 27001 is increasingly mandatory…
Definition
ISO/IEC 27001 is the international standard for information security management systems (ISMS). The 2022 revision specifies 93 controls across organizational, people, physical, and technological themes. Certification by an accredited body involves a Stage 1 documentation review and Stage 2 on-site audit, with annual surveillance audits. ISO 27001 is increasingly mandatory for Saudi government and Aramco vendors handling sensitive data. FI Tech operates an ISO 27001-aligned ISMS across its Riyadh office and edge-deployment ops, with Annex A controls mapped to NCA-ECC and PDPL requirements — single audit covers three regulatory frames, slashing customer-onboarding due diligence time.
