# Managed.sa > Managed.sa is a Saudi Arabian cybersecurity company providing enterprise-grade managed security services aligned with Saudi Vision 2030 and NCA (National Cybersecurity Authority) requirements. ## What We Do Managed.sa delivers integrated cybersecurity services that help Saudi organizations reduce risk, achieve regulatory compliance, and build long-term security resilience. We operate under Saudi law and serve clients across government, energy, financial services, telecommunications, and education sectors. ## Core Services ### Managed Security Operations Center (MSOC) 24/7 threat monitoring, detection, and incident response powered by Saudi-skilled analysts. Includes digital forensics, proactive threat hunting, and actionable threat intelligence. Operates continuously to protect critical infrastructure. ### Governance, Risk & Compliance (GRC) Full-lifecycle GRC services aligned with NCA Essential Cybersecurity Controls (ECC), NCA Non-CNI Cybersecurity Controls (NCNICC), SAMA Cybersecurity Framework, PDPL (Personal Data Protection Law), ISO 27001, and other Saudi and international standards. We help private-sector organizations outside the Critical National Infrastructure (CNI) scope achieve compliance with the NCA's Non-CNI Cybersecurity Controls (NCNICC). We are an authorized third-party auditor for Saudi Aramco (CCC), SABIC, and the Communications, Space & Technology Commission (CST). ### Cybersecurity Assurance Offensive security testing including penetration testing, vulnerability assessment (VAPT), red team exercises, and social engineering assessments. Follows OWASP, OSSTMM, and PTES standards with actionable remediation plans and verified closure reports. ### OT / ICS Security Industrial control system and operational technology security for energy, utilities, and manufacturing sectors. Protects critical infrastructure including SCADA, DCS, and industrial networks against cyber threats. ### Cybersecurity Awareness & Culture Behavior-change programs including phishing simulations, security awareness training, and cyber culture initiatives. Helps organizations reduce human risk and build a lasting security-conscious workforce. ## Authorized Third-Party Auditor Credentials - **Saudi Aramco CCC** — Authorized to assess and certify vendors for Aramco's Cybersecurity Compliance Certificate (CCC) - **SABIC** — Authorized for supply chain cybersecurity compliance audits - **CST (Communications, Space & Technology Commission)** — Authorized for telecom regulatory cybersecurity compliance ## Industries Served - Government and public sector - Financial services (banks, insurance, fintech) - Energy and industrial (oil & gas, utilities) - Telecommunications and technology - Education and universities ## Location & Language - Headquartered in Saudi Arabia - Services delivered in both Arabic and English - Operates under Saudi Vision 2030 cybersecurity framework ## Contact - Website: https://managed.sa - Email: info@managed.sa ## Pages - [Home](https://managed.sa/en) - [MSOC Service](https://managed.sa/en/services/msoc) - [GRC Service](https://managed.sa/en/services/grc) - [Cybersecurity Assurance](https://managed.sa/en/services/assurance) - [OT/ICS Security](https://managed.sa/en/services/ot-ics) - [Awareness & Culture](https://managed.sa/en/services/awareness) - [Aramco Auditor](https://managed.sa/en/auditor/aramco) - [SABIC Auditor](https://managed.sa/en/auditor/sabic) - [CST Auditor](https://managed.sa/en/auditor/cst) - [Industries](https://managed.sa/en/industries) - [Contact](https://managed.sa/en/contact) - [Sitemap](https://managed.sa/sitemap.xml)