See how SirajTech has helped Saudi businesses achieve Aramco CCC certification, strengthen their security posture, and protect their operations — fast.
300+
CCC Certifications Delivered
98%
First-Time Pass Rate
50+
Enterprise Clients
4wks
Average CCC Timeline
Featured Case Studies
How We Delivered Results
Three examples of real engagements — with the challenges, our approach, and the measurable outcomes.
⚙️ Engineering & Construction · Mid-size Engineering Contractor, Dammam
Aramco CCC Certification in 3 Weeks — Starting from Zero
The company had an active Aramco contract renewal approaching in 30 days. They had no cybersecurity policies, no MFA, no email security, and no documented controls — failing all 33 SACS-002 requirements.
3
Weeks to Certify
33
Controls Passed
100%
First-Attempt Pass
0
Audit Findings
Our Approach
Conducted a full gap analysis in 48 hours and prioritized all 33 controls
Deployed FortiGate firewall with IPS and web filtering within 5 days
Configured MFA across all Microsoft 365 accounts and enforced Conditional Access
Implemented SPF, DKIM, and DMARC on all company email domains
Wrote 14 required security policies and trained all 35 staff members
Collected and packaged all audit evidence for Aramco submission
Key Outcomes
Outcome: CCC Certified — First Attempt
Timeline: 3 Weeks
Controls: 33 / 33 Controls Passed
Saving: Contract Retained
Technologies Used
SACS-002
Aramco CCC
FortiGate
Microsoft 365
Policy Writing
🚛 Logistics & Transportation · Regional Logistics Firm, Eastern Province
Full Security Overhaul — FortiGate, M365 & Endpoint Protection
The company suffered a ransomware attack that encrypted their operations for 4 days. They had no endpoint protection, no backups, and their Microsoft 365 had no MFA. Recovery cost over SAR 120,000 in downtime and IT recovery.
0
Incidents Since
60
Endpoints Protected
4wks
Implementation
24/7
Monitoring Active
Our Approach
Deployed Bitdefender GravityZone EDR across all 60 endpoints and servers
Replaced aging router with FortiGate NGFW with IPS, UTM, and SSL inspection
Enforced MFA and Conditional Access across all Microsoft 365 accounts
Implemented Acronis backup with 3-2-1 strategy and ransomware recovery
Configured Microsoft Defender for Business and secure email routing
Delivered full incident response runbook and staff security awareness training
Key Outcomes
Outcome: Zero Incidents in 12 Months
Timeline: 4 Weeks Implementation
Savings: SAR 120,000+ Downtime Prevented
Coverage: 60 Endpoints Protected
Technologies Used
FortiGate
Bitdefender EDR
Acronis
Microsoft 365
Incident Response
⛽ Oil & Gas Services · Oil Services Company, Jubail Industrial City
Full Managed Security + CCC Renewal — Ongoing Protection
The company had initial CCC certification from a previous provider but was due for annual renewal. Their existing controls had drifted out of compliance, their firewall was misconfigured, and they faced potential contract suspension with Saudi Aramco.
11
Gaps Remediated
2wks
Full Remediation
100%
Renewal Approved
12mo
Managed Support
Our Approach
Conducted a pre-renewal audit and identified 11 control gaps requiring remediation
Reconfigured FortiGate policies and updated firewall rule sets to current best practices
Refreshed all 14 security policies to align with the new SACS-210 requirements
Re-deployed MFA with updated Conditional Access policies for all remote workers
Set up automated monthly compliance reporting and evidence collection
Enrolled company in SirajTech Managed Security Plan for ongoing protection
Key Outcomes
Outcome: Renewal Approved — Zero Suspension Risk
Gaps: 11 Gaps Remediated
Timeline: 2 Weeks Remediation
Status: Ongoing Managed Client
Technologies Used
SACS-210
CCC Renewal
FortiGate
Managed Security
Compliance
Ready to Be Our Next Success Story?
Book a free consultation — we'll assess your current posture and show you exactly what's needed.