Saudi Telecom makes ISO grade for information security

Saudi Telecom has been awarded ISO/IEC 27001 certification for information security from BSI. Saudi Telecom worked with Riyadh-based solutions and service provider I(TS)2 on strategic implementation advice, consulting, training and documentation ahead of the ISO certification.

The ISO/IEC 27001 certification confirms Saudi Telecom’s compliance with the requirements of the international standard and endorses its strong capabilities in the information security field.

“Our information security goal in Saudi Telecom is to ensure that we are providing the company, its employees, customers and investors solid and robust security,” said Omer Al-Nomany, information security general manager at Saudi Telecom. “ISO 27001 initiative and certification is only the first of more in this area, we hope to announce subsequent certifications in the near future.”

Saudi Telecom claims that the certification is recognition of several major achievements the company has made in the information security field. These include the establishment of a 24x7 security operation centre (SOC), the implementation of a disaster recovery centre, the implementation of a revenue assurance and fraud management infrastructure and the implementation of a number of technical security solutions. Some 95% of Saudi Telecom’s information security staff are Saudi nationals.

I(TS)2 has played a significant role in assisting Saudi Telecom on its path to ISO/IEC 27001 certification. I(TS)2 boasts a regional security academy providing professional and international certifications and is the only platinum consultancy partner for BSI Management Systems in Saudi Arabia. I(TS)2 also holds Cisco advanced security and Microsoft gold partnerships. The company now has more than 50 employees in Riyadh, the Eastern and Western Provinces of Saudi Arabia and also in Jordan.

“Saudi Telecom is leading by example, and it will undoubtedly be the leader in a growing number of Saudi and Middle Eastern organisations seeking independent, third-party verification of their information security management systems,” said Samer Omar, general manager of I(TS)2. “The significance of this milestone should not be understated.”

Robert Whitcher, global product manager at BSI Management Systems, added: “More than 3,000 organisations worldwide have already been certified against ISO/IEC 27001 and its predecessor BS 7799. Saudi Telecom has demonstrated great leadership in the Middle East by implementing and certifying to ISO/IEC 27001 and we expect other successful organisations to follow their example.

"I(TS)2 has shown remarkable leadership working with BSI and the standards community. I(TS)2 risk mitigation credentials are unassailable,” he concluded.