CIS Controls Accreditation Drives Global Cybersecurity Standards

Darussalam Assets Sdn Bhd (DA) has officially become the first organization in Brunei Darussalam to earn the CIS Controls Accreditation, marking a historic moment for the nation’s cybersecurity development.

Brunei is a small but economically strong country located on the island of Borneo in Southeast Asia. Despite its size, Brunei has been rapidly modernizing its digital infrastructure and strengthening its cybersecurity capabilities. DA’s achievement places the country on the global map as a leader in adopting internationally recognized cybersecurity standards.

Understanding the CIS Controls Accreditation

The CIS Controls Accreditation is a formal recognition for organizations that demonstrate the ability to implement, assess, and support the CIS Critical Security Controls (CIS Controls). The CIS Controls are a globally respected set of cybersecurity best practices designed to help organizations protect their systems and data from cyberattacks.

To earn this accreditation, an organization must undergo a rigorous assessment conducted by CREST, an internationally recognized cybersecurity accreditation body. Passing this assessment confirms that the organization:

• Follows globally recognized cybersecurity best practices
• Has strong, measurable, and consistent security processes
• Can be trusted to support or assess CIS Controls implementation

For stakeholders, this accreditation serves as a trusted indicator of cybersecurity maturity and reliability.

Why Darussalam Assets Committed to This Global Cybersecurity Standard

DA oversees a diverse group of companies across multiple industries. Because of this variety, the organization needed a cybersecurity framework that could be applied consistently across all business sectors. The CIS Controls offered a practical, prioritized, and globally recognized approach that met this need.

“Darussalam Assets has set a new benchmark for cybersecurity excellence in Southeast Asia. Becoming the first organization in Brunei to earn the CIS Controls Accreditation shows a deep commitment to protecting systems, data, and national digital growth. This is the kind of leadership that strengthens global cyber resilience,” Curt Dukes
Executive Vice President and General Manager of Security Best Practices at the Center for Internet Security.

DA’s goal was clear. Strengthen the cybersecurity posture of the entire DA Group and ensure that cyber resilience is treated as a business priority.

A Milestone for DA and a Leap Forward for Brunei

For DA, this accreditation validates years of investment in training, assessments, governance improvements, and hands on work with companies across the Group. It confirms that the direction and guidance provided by the DA Group IT Risk Management team have been effective and impactful.

For Brunei, the achievement is even more significant. It:

• Supports the nation’s digital transformation goals
• Strengthens cybersecurity across key industries
• Demonstrates Brunei’s commitment to global best practices
• Sets a benchmark for other organizations in the country

This milestone contributes to building a more resilient and future ready digital economy for the nation.

A Multi-Year Journey of Commitment and Continuous Improvement

DA’s journey began in 2019. Over several years, the organization invested in CIS SecureSuite, professional certifications, internal and external assessments, and practical implementation of the CIS Controls across the DA Group.

The process required collaboration, persistence, and continuous improvement. Each stage helped DA mature its cybersecurity capabilities until it successfully completed the CREST assessment and earned the accreditation.

 

“This milestone reflects years of teamwork and steady progress across the DA Group,” said Apurv Sharma, Senior Information Technology Services Manager at Darussalam Assets. “It strengthens our ability to support Brunei’s digital future.”

What This CIS Controls Accreditation Unlocks for DA and Its Partners

Achieving the CIS Controls Accreditation brings several important benefits:

• Increased confidence among stakeholders that cybersecurity risks are being managed effectively
• Stronger accountability and consistency across the DA Group
• Better visibility into cyber risks and controls
• Improved risk management, compliance, and operational resilience
• A clear benchmark for continuous improvement
• A stronger cybersecurity culture across the organization

How This Accreditation Strengthens DA’s Future Cybersecurity Strategy

As cloud adoption, digital transformation, and artificial intelligence continue to grow, cyber threats are becoming more sophisticated. This accreditation gives DA a strong foundation for future cybersecurity initiatives and reinforces the importance of:

• Strong governance
• Continuous monitoring
• Security awareness
• Standards aligned practices

Cybersecurity is now a fundamental business necessity for protecting organizations, data, and trust.

To learn more about the CIS Controls Accreditation process and how it helps organizations strengthen their cybersecurity posture, visit the CIS Controls Accreditation page or explore the full suite of resources available through CIS SecureSuite.