Muscat – Reinforcing its commitment to the highest international standards in information management and protection, the Telecommunications Regulatory Authority (TRA) has been awarded the ISO/IEC 27001:2022 certification for Information Security Management Systems.

The certification follows the successful completion of an external audit, during which the auditing firm recommended the accreditation after the TRA met all requirements and criteria set out in the international standard issued by the International Organisation for Standardisation (ISO).

This achievement highlights the TRA’s dedication to enhancing information security through ensuring the confidentiality, integrity, and availability of data — thereby increasing the reliability of the services it provides. The certification also underlines the Authority’s effective approach to managing information security risks and implementing preventative controls to mitigate cyber threats and data breaches.

Additionally, the TRA emphasised that the certification contributes to raising internal security awareness, fostering a culture of governance and compliance, and aligning with legal and regulatory obligations, including national data protection policies. It also boosts stakeholder confidence by demonstrating a continuous commitment to data protection and the ongoing improvement of information security-related processes and procedures.

It is worth noting that the TRA had previously obtained other international accreditations, including the ISO 22301:2019 certification for Business Continuity Management and the ISO 9001:2015 certification for Quality Management Systems, following rigorous internal and external assessments and full compliance with ISO standards.